From owner-freebsd-questions@FreeBSD.ORG Thu Mar 13 12:38:04 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 3C1EE2B8 for ; Thu, 13 Mar 2014 12:38:04 +0000 (UTC) Received: from smtp.des.no (smtp.des.no [194.63.250.102]) by mx1.freebsd.org (Postfix) with ESMTP id F1995139 for ; Thu, 13 Mar 2014 12:38:03 +0000 (UTC) Received: from nine.des.no (smtp.des.no [194.63.250.102]) by smtp-int.des.no (Postfix) with ESMTP id F4131517E; Thu, 13 Mar 2014 12:37:56 +0000 (UTC) Received: by nine.des.no (Postfix, from userid 1001) id 6889D1661; Thu, 13 Mar 2014 13:37:30 +0100 (CET) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: Peter Ulrich Kruppa Subject: Re: How to set up unbound on FreeBSD 10 References: <5270C384.9040502@pukruppa.de> <5270DDC0.2050603@gmail.com> <5270FCF2.1030209@pukruppa.de> <52738340.4050705@unsane.co.uk> <5273E55B.3070705@pukruppa.de> Date: Thu, 13 Mar 2014 13:37:30 +0100 In-Reply-To: <5273E55B.3070705@pukruppa.de> (Peter Ulrich Kruppa's message of "Fri, 01 Nov 2013 18:31:07 +0100") Message-ID: <864n32xoj9.fsf@nine.des.no> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Cc: Wei Guo , freebsd-questions@freebsd.org, Vincent Hoffman X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Mar 2014 12:38:04 -0000 [really old thread which showed up in my referrer log] Peter Ulrich Kruppa writes: > it seems I have found the way to work my setup: > My /etc/resolv.conf must not be changed by unbound. I.e. After starting > local_unbound I remove the lines nameserver 127.0.0.1 and options edns0 > and uncomment the nameserver entries created by ppp. > nameserver 217.237.151.51 > nameserver 217.237.149.205 This tells your machine to stop using the local unbound and use your ISP's nameserver instead. You might as well disable the local_unbound service entirely - it's just wasting CPU and RAM at this point. > My /var/unbound/forward.conf I leave as it was generated: > [...] > and in my /var/unbound/unbound.conf I add some lines > [...] which has zero effect since you're no longer querying unbound. The first time you start the local_unbound service, it runs a script (local-unbound-setup) which configures unbound and sets up resolvconf(8) to update the unbound configuration instead of resolv.conf(5). This ensures that unbound will continue to work when you're roaming, or when your ISP changes the nameserver information in their DHCP responses. The problem here is that ppp(8) does not use resolvconf(8), but updates resolv.conf(5) directly. This is a bug in ppp(8), and has nothing to do with unbound. (who the * uses PPP these days?) DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no