local_unbound stops resolving
Frank Shute
frank at woodcruft.co.uk
Wed Sep 6 22:49:50 UTC 2017
On Wed, Sep 06, 2017 at 11:19:40AM -0400, James B. Byrne wrote:
>
> The problem that I am having on my desktop FreeBSD-11.0p12 is still
> with me and I have confirmed that the system time is correct. This
> issue only arises with our own domain (harte-lyne.ca). Below are two
> debug logs for the same query (drill inet02.hamilton.harte-lyne.ca).
> The first is when the problem is exhibited. The second immediately
> after local_unbound is restarted.
>
> Before restart:
>
> # drill inet02.hamilton.harte-lyne.ca
> ;; ->>HEADER<<- opcode: QUERY, rcode: SERVFAIL, id: 36528
> ;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
> ;; QUESTION SECTION:
> ;; inet02.hamilton.harte-lyne.ca. IN A
> . . .
> ;; Query time: 11 msec
> ;; SERVER: 127.0.0.1
> ;; WHEN: Wed Sep 6 11:05:15 2017
> ;; MSG SIZE rcvd: 47
>
> Debug Log:
<snip>
Hi James,
You mention about a "key" being mentioned in the debug log but I wouldn't
be surprised if that is just due to the tool, drill(1), you're using; which
from it's manpage seems to expect DNSSEC.
My best guess, is that your hosts(5) might not be entirely in order which
maybe causing some funky Unbound behaviour from queries from the same
machine:
I assume that /etc/host.conf looks like:
hosts
dns
and resolv.conf(5) looks like:
nameserver 127.0.0.1
so hosts(s) should look something like:
127.0.0.1 localhost inet08.hamilton.harte-lyne.ca
(I'm going from your email headers).
Anyway, just batting about some ideas rather than a definitive solution.
Regards,
--
Frank
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20170906/07c0f662/attachment.sig>
More information about the freebsd-questions
mailing list