local_unbound stops resolving

Frank Shute frank at woodcruft.co.uk
Wed Sep 6 22:49:50 UTC 2017

On Wed, Sep 06, 2017 at 11:19:40AM -0400, James B. Byrne wrote:
> The problem that I am having on my desktop FreeBSD-11.0p12 is still
> with me and I have confirmed that the system time is correct.  This
> issue only arises with our own domain (harte-lyne.ca).  Below are two
> debug logs for the same query (drill inet02.hamilton.harte-lyne.ca).
> The first is when the problem is exhibited. The second immediately
> after local_unbound is restarted.
> Before restart:
> # drill inet02.hamilton.harte-lyne.ca
> ;; ->>HEADER<<- opcode: QUERY, rcode: SERVFAIL, id: 36528
> ;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
> ;; inet02.hamilton.harte-lyne.ca.	IN	A
> . . .
> ;; Query time: 11 msec
> ;; SERVER:
> ;; WHEN: Wed Sep  6 11:05:15 2017
> ;; MSG SIZE  rcvd: 47
> Debug Log:


Hi James,

You mention about a "key" being mentioned in the debug log but I wouldn't
be surprised if that is just due to the tool, drill(1), you're using; which
from it's manpage seems to expect DNSSEC.

My best guess, is that your hosts(5) might not be entirely in order which
maybe causing some funky Unbound behaviour from queries from the same

I assume that /etc/host.conf looks like:


and resolv.conf(5) looks like:


so hosts(s) should look something like:  localhost inet08.hamilton.harte-lyne.ca

(I'm going from your email headers).

Anyway, just batting about some ideas rather than a definitive solution.




-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20170906/07c0f662/attachment.sig>

More information about the freebsd-questions mailing list