Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 25 Mar 2014 11:33:04 +0100
From:      Ewald Jenisch <a@jenisch.at>
To:        <freebsd-questions@freebsd.org>
Subject:   No DNS-resolution after going to "unbound"
Message-ID:  <20140325103304.GA1621@aurora.oekb.co.at>
next in thread | raw e-mail | index | archive | help 

Hi,

Since by default FreeBSD 10 uses "unbound" as standard DNS-server I
wanted to set up my system (FreeBSD 10, 64bit with kernel/system
current as per Mar 19) to run a local caching DNS-server using
unbound.

So I went ahead and proceeded as per
https://wiki.freebsd.org/WhatsNew/FreeBSD10 which in turn points to
http://blog.des.no/2013/09/local-caching-resolver-in-freebsd-10/ i.e.

# echo local_unbound_enable=yes >>/etc/rc.conf
# service local_unbound start

As a result my /etc/resolv.conf has 

nameserver 127.0.0.1
options edns0

which seems correct and 

# sockstat -4 | grep unbound
unbound  unbound    3719  5  udp4   127.0.0.1:53          *:*
unbound  unbound    3719  6  tcp4   127.0.0.1:53          *:*
# 

and /etc/unbound/unbound.conf is

# Generated by local-unbound-setup
server:
        username: unbound
        directory: /var/unbound
        chroot: /var/unbound
        pidfile: /var/run/local_unbound.pid
        auto-trust-anchor-file: /var/unbound/root.key
        verbosity: 1

include: /var/unbound/forward.conf
# 



However whatever name I try to resolve doesn't work:


# ping www.cisco.com
ping: cannot resolve www.cisco.com: Host name lookup failure
#


# drill www.cnn.com
;; ->>HEADER<<- opcode: QUERY, rcode: SERVFAIL, id: 46336
;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 
;; QUESTION SECTION:
;; www.cnn.com. IN      A

;; ANSWER SECTION:

;; AUTHORITY SECTION:

;; ADDITIONAL SECTION:

;; Query time: 126 msec
;; SERVER: 127.0.0.1
;; WHEN: Tue Mar 25 11:29:39 2014
;; MSG SIZE  rcvd: 29
#


BTW - no firewall etc. in place, just set up the Box from scratch,
updated kernel/system and then wanted to switch to a local caching
DNS-server using unbound.


Has anybody out there experienced the same problems? Any known cure
against it?


Thanks much in advance for any clue,
-ewald

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20140325103304.GA1621>