Date: Wed, 6 Sep 2017 23:49:14 +0100 From: Frank Shute <frank@woodcruft.co.uk> To: "James B. Byrne" <byrnejb@harte-lyne.ca> Cc: freebsd-questions@freebsd.org Subject: Re: local_unbound stops resolving Message-ID: <20170906224913.GA81612@woodcruft.co.uk> In-Reply-To: <fea1d9558be2a5cc125a07937451fc46.squirrel@webmail.harte-lyne.ca> References: <fea1d9558be2a5cc125a07937451fc46.squirrel@webmail.harte-lyne.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
--YZ5djTAD1cGYuMQK Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Sep 06, 2017 at 11:19:40AM -0400, James B. Byrne wrote: > > The problem that I am having on my desktop FreeBSD-11.0p12 is still > with me and I have confirmed that the system time is correct. This > issue only arises with our own domain (harte-lyne.ca). Below are two > debug logs for the same query (drill inet02.hamilton.harte-lyne.ca). > The first is when the problem is exhibited. The second immediately > after local_unbound is restarted. >=20 > Before restart: >=20 > # drill inet02.hamilton.harte-lyne.ca > ;; ->>HEADER<<- opcode: QUERY, rcode: SERVFAIL, id: 36528 > ;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 > ;; QUESTION SECTION: > ;; inet02.hamilton.harte-lyne.ca. IN A > . . . > ;; Query time: 11 msec > ;; SERVER: 127.0.0.1 > ;; WHEN: Wed Sep 6 11:05:15 2017 > ;; MSG SIZE rcvd: 47 >=20 > Debug Log: <snip> Hi James, You mention about a "key" being mentioned in the debug log but I wouldn't be surprised if that is just due to the tool, drill(1), you're using; which =66rom it's manpage seems to expect DNSSEC. My best guess, is that your hosts(5) might not be entirely in order which maybe causing some funky Unbound behaviour from queries from the same machine: I assume that /etc/host.conf looks like: hosts dns and resolv.conf(5) looks like: nameserver 127.0.0.1 so hosts(s) should look something like: 127.0.0.1 localhost inet08.hamilton.harte-lyne.ca (I'm going from your email headers). Anyway, just batting about some ideas rather than a definitive solution. Regards, --=20 Frank --YZ5djTAD1cGYuMQK Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEXRpQZWMUMC1nxphkORvOAPtvi1oFAlmwe2kACgkQORvOAPtv i1olww/+NJapLbsRq4g1qESO2Yc7SKl3xfNxdboO+7sUEQx4h5n/SGjdioPFkzVn esfRUaHGdrzi6WV1mVrKhoH/vsx7z6KQS98vBSOOwR7BjWAxnvCpUJGZgQMa91kQ V1pPMY0lS+Z0jF39FLGC3bsl+d+eYt4BaOlbl+dhbh4prEwKQf6FlAkDYuJpr7A8 Ca6/tgNFZFWdr72umYSpBgSQBWcwFNgbCEqAilKiIXVU5zawIOUzn0QEeY9VauEB XWbxKIM9ZnRAVsexe2HqAuo6LXwVFyZaja6CZsoSwVjMLPAOoJvZp6TTX4jqsKZ4 OP0PLV5ZXEZZt/t4UqPyng2iw+lZnUW925vlsFFg4Wr2ToRi6gjfzPrdGwWfimL/ dseJYGpNbV0V+MHq+N10TjtLtvHsKgtrd2FHOAE67LjMGZRevYUaKUNkUqbAVyhH 4q+hfDEUMWqA0LRvopXNfz21yiTA+ZgS25dm6MyqxAWmWXmnf4Nu0jvRVp6u0miI ODEWY2AA9LsSdoaPjhja33942LLw/xHXvFZh93Exf0AlHSgi1k9tGJM2/rJbNJQq +MIGNqOFhaMg/sWEG1CjvcgbyrK8z/80Z3R/LLD3nIYBGLKGu4KE1K4AinobMl+i 5AvWsyi9MM/a68otXDK5eRcG2aNPuI3kHZVRxxsUu6pPPbYEf8g= =wIfh -----END PGP SIGNATURE----- --YZ5djTAD1cGYuMQK--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20170906224913.GA81612>