Re-added Unbound DNS over TLS

It turns out you can't use a local DNS server once connected with the VPN, so running the DNS over TLS in the PIA container is the best.

unbound.conf

@@ -0,0 +1,18 @@
+server:
+  verbosity: 0
+  use-syslog: yes
+  qname-minimisation: yes
+  do-tcp: yes
+  prefetch: yes
+  rrset-roundrobin: yes
+  use-caps-for-id: yes
+  do-ip4: yes
+  do-ip6: no
+  interface: 127.0.0.1
+  hide-identity: yes
+  hide-version: yes
+forward-zone:
+  name: "."
+  forward-addr: 1.1.1.1@853#cloudflare-dns.com
+  forward-addr: 1.0.0.1@853#cloudflare-dns.com
+  forward-ssl-upstream: yes