No DNS-resolution after going to "unbound"
Beeblebrox
zaphod at berentweb.com
Tue Mar 25 13:33:09 UTC 2014
Hi. You have enabled DNSSEC with
auto-trust-anchor-file: /var/unbound/root.key
Did you run "#unbound-anchor" first in order to generate the key?
Read: http://www.unbound.net/documentation/howto_anchor.html
"You must obtain an initial trust anchor. The unbound-anchor tool provides
an initial anchor from builtin values"
You can also try and see if the problem goes away (for testing) when
"auto-trust-anchor-file" is disabled. Also, I assume this holds your
forward-zone info?
include: /var/unbound/forward.conf
Make sure the list in that file contains DNSSEC-enabled servers. If the list
contains non-DNSSEC servers, it won't work. Alternatively, if you have setup
(copy/paste) your "root.hints" file, you do noy need to specify any
forward-zone at all. Run unbound & unbound-anchor with all forward zone
settings disabled - root-hints will take care of it all with "default
servers".
-----
FreeBSD-11-current_amd64_root-on-zfs_RadeonKMS
--
View this message in context: http://freebsd.1045724.n5.nabble.com/No-DNS-resolution-after-going-to-unbound-tp5897465p5897510.html
Sent from the freebsd-questions mailing list archive at Nabble.com.
More information about the freebsd-questions
mailing list