From owner-freebsd-questions@FreeBSD.ORG Tue Mar 25 10:34:17 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id EC9D474F for ; Tue, 25 Mar 2014 10:34:17 +0000 (UTC) Received: from mgaterz1.oekb.co.at (mgaterz1.oekb.co.at [143.245.5.111]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 358D7895 for ; Tue, 25 Mar 2014 10:34:16 +0000 (UTC) Received: from exchhubcas1.oekb.co.at ([143.245.3.64]) by mgaterz1.oekb.co.at with ESMTP/TLS/AES128-SHA; 25 Mar 2014 11:33:05 +0100 Received: from aurora.oekb.co.at (143.245.9.16) by internal-relay-exchhubcas1.oekb.co.at (143.245.3.65) with Microsoft SMTP Server id 14.2.318.4; Tue, 25 Mar 2014 11:33:04 +0100 Received: from aurora.oekb.co.at (localhost [127.0.0.1]) by aurora.oekb.co.at (8.14.8/8.14.8) with ESMTP id s2PAX4PJ001654; Tue, 25 Mar 2014 11:33:04 +0100 (CET) (envelope-from a@jenisch.at) Received: (from ej@localhost) by aurora.oekb.co.at (8.14.8/8.14.8/Submit) id s2PAX4RM001653; Tue, 25 Mar 2014 11:33:04 +0100 (CET) (envelope-from a@jenisch.at) X-Authentication-Warning: aurora.oekb.co.at: ej set sender to a@jenisch.at using -f Date: Tue, 25 Mar 2014 11:33:04 +0100 From: Ewald Jenisch To: Subject: No DNS-resolution after going to "unbound" Message-ID: <20140325103304.GA1621@aurora.oekb.co.at> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Disposition: inline User-Agent: Mutt/1.5.22 (2013-10-16) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 25 Mar 2014 10:34:18 -0000 Hi, Since by default FreeBSD 10 uses "unbound" as standard DNS-server I wanted to set up my system (FreeBSD 10, 64bit with kernel/system current as per Mar 19) to run a local caching DNS-server using unbound. So I went ahead and proceeded as per https://wiki.freebsd.org/WhatsNew/FreeBSD10 which in turn points to http://blog.des.no/2013/09/local-caching-resolver-in-freebsd-10/ i.e. # echo local_unbound_enable=yes >>/etc/rc.conf # service local_unbound start As a result my /etc/resolv.conf has nameserver 127.0.0.1 options edns0 which seems correct and # sockstat -4 | grep unbound unbound unbound 3719 5 udp4 127.0.0.1:53 *:* unbound unbound 3719 6 tcp4 127.0.0.1:53 *:* # and /etc/unbound/unbound.conf is # Generated by local-unbound-setup server: username: unbound directory: /var/unbound chroot: /var/unbound pidfile: /var/run/local_unbound.pid auto-trust-anchor-file: /var/unbound/root.key verbosity: 1 include: /var/unbound/forward.conf # However whatever name I try to resolve doesn't work: # ping www.cisco.com ping: cannot resolve www.cisco.com: Host name lookup failure # # drill www.cnn.com ;; ->>HEADER<<- opcode: QUERY, rcode: SERVFAIL, id: 46336 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; www.cnn.com. IN A ;; ANSWER SECTION: ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; Query time: 126 msec ;; SERVER: 127.0.0.1 ;; WHEN: Tue Mar 25 11:29:39 2014 ;; MSG SIZE rcvd: 29 # BTW - no firewall etc. in place, just set up the Box from scratch, updated kernel/system and then wanted to switch to a local caching DNS-server using unbound. Has anybody out there experienced the same problems? Any known cure against it? Thanks much in advance for any clue, -ewald