Date: Thu, 14 Aug 2014 17:17:12 +0200 From: Ruben van Staveren <ruben@verweg.com> To: Marc Fournier <scrappy@hub.org> Cc: freebsd-jail@freebsd.org Subject: Re: FreeBSD 10 + unbound + jail == nothing resolves Message-ID: <78D774FA-EE8E-4A67-A600-504E5B47BB12@verweg.com> In-Reply-To: <C299EE65-AE3C-4713-938C-3C5B5D817163@hub.org> References: <C299EE65-AE3C-4713-938C-3C5B5D817163@hub.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--Apple-Mail=_0356D966-550B-411A-BC42-3D5BBF954582 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=windows-1252 Marc, can you try to disable DNSSEC?=20 http://www.unbound.net/documentation/howto_turnoff_dnssec.html (and add val-log-level: 2) it might be that your upstream nameserver botches DNSSEC reply. To keep = DNSSEC, uncomment inclusion of the generated forwarder configuration and = have unbound query the root nameservers itself. Cheers, Ruben =20 On 14 Aug 2014, at 8:48, Marc Fournier <scrappy@hub.org> wrote: >=20 > Before I give up and just install bind (which I=92d really like to = avoid doing, but it did work out of the box) =85 has anyone gotten this = to run? >=20 > I=92ve searched Google, and can find next to nothing =85 but I have = to be missing something obvious, else I would expect to find loads =85 = or nobody is acutally doing this =85 >=20 > I tried the simple:=20 >=20 > add local_unbound_enable=3D=93YES=94 to rc.conf > start up the service >=20 > it modifies my /etc/resolv.conf, starts up, but when I try to =91drill=92= a domain, I get nothing back =85 checked /var/log/messages, only thing = I see is what appears to be the start up: >=20 > Aug 14 07:19:02 97381 unbound: [44840:0] notice: init module 0: = validator > Aug 14 07:19:02 97381 unbound: [44840:0] notice: init module 1: = iterator >=20 >=20 > I=92ve even tried running from the command line with =91-d -vv=92, and = all I get is: >=20 > /var/unbound # /usr/sbin/unbound -c/var/unbound/unbound.conf -d -vv > [1407997717] unbound[45554:0] notice: Start of unbound 1.4.20. > [1407997717] unbound[45554:0] debug: switching log to syslog >=20 > I have it running on the host server, and it responsed perfectly well = =85 I=92ve tried changing the =91namserver=92 setting in = /etc/resolv.conf to be the IP of the jail, vs localhost =85 as well as = setting =91interfaces=92 in /var/unbound/unbound.conf =85 no difference = =85 >=20 > Help? >=20 >=20 >=20 > _______________________________________________ > freebsd-jail@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-jail > To unsubscribe, send any mail to = "freebsd-jail-unsubscribe@freebsd.org" >=20 --Apple-Mail=_0356D966-550B-411A-BC42-3D5BBF954582 Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP using GPGMail -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org iEYEARECAAYFAlPs0vgACgkQZ88+mcQxRw2jxgCgg+7gIHlGMJQgqAZjZKkc+ePN x6gAn3qutDLC6swd+ws4eml7Ad0gbl18 =xbQN -----END PGP SIGNATURE----- --Apple-Mail=_0356D966-550B-411A-BC42-3D5BBF954582--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?78D774FA-EE8E-4A67-A600-504E5B47BB12>