Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
FreeBSD-11 local_unbound stops resolving
127 views
Skip to first unread message
James B. Byrne via freebsd-questions
Aug 8, 2017, 12:46:35 PM8/8/17
to
I have a reoccurring issue with my recently installed FreeBSD
workstation. The local_unbound dns service ceases to provide dns
entries to the local resolver after some period of time; measured in
many hours or days. I have checked the pf firewall logs and that is
not blocking any traffic relating to DNS that I can detect.
If I re-run local-unbound-setup then local_unbound again resolves. If
I restart the local_unbound service then dns resolution again works.
I cannot see anything in /var/log/messages that indicate that the
unbound service has a problem and the service is indeed running when I
encounter the issue.
We have many other FreeBSD-11 hosts running local unbound and I have
not noticed this issue anywhere else.
This is the resolv.conf file
# cat /etc/resolv.conf
search harte-lyne.ca hamilton.harte-lyne.ca brockley-2016.harte-lyne.ca
nameserver 127.0.0.1
nameserver 216.185.71.33
nameserver 216.185.71.34
options edns0
# cat /var/unbound/forward.conf
# This file was generated by local-unbound-setup.
# Modifications will be overwritten.
forward-zone:
name: .
forward-addr: 216.185.71.33
forward-addr: 216.185.71.34
--
*** e-Mail is NOT a SECURE channel ***
Do NOT transmit sensitive data via e-Mail
Do NOT open attachments nor follow links sent by e-Mail
James B. Byrne mailto:Byr...@Harte-Lyne.ca
Harte & Lyne Limited http://www.harte-lyne.ca
9 Brockley Drive vox: +1 905 561 1241
Hamilton, Ontario fax: +1 905 561 0757
Canada L8E 3C3
_______________________________________________
freebsd-...@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questi...@freebsd.org"
workstation. The local_unbound dns service ceases to provide dns
entries to the local resolver after some period of time; measured in
many hours or days. I have checked the pf firewall logs and that is
not blocking any traffic relating to DNS that I can detect.
If I re-run local-unbound-setup then local_unbound again resolves. If
I restart the local_unbound service then dns resolution again works.
I cannot see anything in /var/log/messages that indicate that the
unbound service has a problem and the service is indeed running when I
encounter the issue.
We have many other FreeBSD-11 hosts running local unbound and I have
not noticed this issue anywhere else.
This is the resolv.conf file
# cat /etc/resolv.conf
search harte-lyne.ca hamilton.harte-lyne.ca brockley-2016.harte-lyne.ca
nameserver 127.0.0.1
nameserver 216.185.71.33
nameserver 216.185.71.34
options edns0
# cat /var/unbound/forward.conf
# This file was generated by local-unbound-setup.
# Modifications will be overwritten.
forward-zone:
name: .
forward-addr: 216.185.71.33
forward-addr: 216.185.71.34
--
*** e-Mail is NOT a SECURE channel ***
Do NOT transmit sensitive data via e-Mail
Do NOT open attachments nor follow links sent by e-Mail
James B. Byrne mailto:Byr...@Harte-Lyne.ca
Harte & Lyne Limited http://www.harte-lyne.ca
9 Brockley Drive vox: +1 905 561 1241
Hamilton, Ontario fax: +1 905 561 0757
Canada L8E 3C3
_______________________________________________
freebsd-...@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questi...@freebsd.org"
edgar
Aug 8, 2017, 1:13:45 PM8/8/17
to
>
> On Aug 8, 2017 at 11:45 AM, <James B. Byrne via freebsd-questions> wrote:
>
>
> I have a reoccurring issue with my recently installed FreeBSD workstation. The local_unbound dns service ceases to provide dns entries to the local resolver after some period of time; measured in many hours or days. I have checked the pf firewall logs and that is not blocking any traffic relating to DNS that I can detect. If I re-run local-unbound-setup then local_unbound again resolves. If I restart the local_unbound service then dns resolution again works. I cannot see anything in /var/log/messages that indicate that the unbound service has a problem and the service is indeed running when I encounter the issue. We have many other FreeBSD-11 hosts running local unbound and I have not noticed this issue anywhere else. This is the resolv.conf file # cat /etc/resolv.conf search harte-lyne.ca hamilton.harte-lyne.ca brockley-2016.harte-lyne.ca nameserver 127.0.0.1 nameserver 216.185.71.33 nameserver 216.185.71.34 options edns0 # cat /var/unbound/forward.conf # This file was g!
enerated
by local-unbound-setup. # Modifications will be overwritten. forward-zone: name: . forward-addr: 216.185.71.33 forward-addr: 216.185.71.34 -- *** e-Mail is NOT a SECURE channel *** Do NOT transmit sensitive data via e-Mail Do NOT open attachments nor follow links sent by e-Mail James B. Byrne mailto:Byr...@Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3 _______________________________________________ freebsd-...@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questi...@freebsd.org"
>
>
>
>
> I have that problem on my home firewall running openbsd. I think it is related to my dynamic ip. Not sure though. I just have a script that tests unbound and restarts if necessary run every 15 minutes. Unfortunately I never looked into it further because one I had a working workaround I forgot until this post.
by local-unbound-setup. # Modifications will be overwritten. forward-zone: name: . forward-addr: 216.185.71.33 forward-addr: 216.185.71.34 -- *** e-Mail is NOT a SECURE channel *** Do NOT transmit sensitive data via e-Mail Do NOT open attachments nor follow links sent by e-Mail James B. Byrne mailto:Byr...@Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3 _______________________________________________ freebsd-...@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questi...@freebsd.org"
>
>
>
>
>
>
>
>
> Good luck.
Dave Cottlehuber
Aug 8, 2017, 4:58:21 PM8/8/17
to
On Tue, 8 Aug 2017, at 18:45, James B. Byrne via freebsd-questions
wrote:
this on pfsense too when the external interface is restarted, perhaps a
similar thing is happening here. At least you should be able to
correlate this with loss of dns.
If so, you may be able to work around this by prepending your DNS
servers into your dhclient.conf on the workstation; here's my wlan0
config. I use this to avoid crappy wifi DNS providers when travelling,
DNScrypt would be a better solution I guess.
# /etc/dhclient.conf
# https://www.freebsd.org/cgi/man.cgi?query=dhclient.conf
interface "wlan0" {
send host-name "your.host.name";
send dhcp-lease-time 864000;
supersede domain-search "skunkwerks.at";
prepend domain-name-servers 172.16.1.1, 4.2.2.2;
request subnet-mask, broadcast-address, time-offset, routers,
domain-search, domain-name, domain-name-servers, host-name;
require subnet-mask, domain-name-servers;
wrote:
> I have a reoccurring issue with my recently installed FreeBSD
> workstation. The local_unbound dns service ceases to provide dns
> entries to the local resolver after some period of time; measured in
> many hours or days. I have checked the pf firewall logs and that is
> not blocking any traffic relating to DNS that I can detect.
>
> If I re-run local-unbound-setup then local_unbound again resolves. If
> I restart the local_unbound service then dns resolution again works.
>
> I cannot see anything in /var/log/messages that indicate that the
> unbound service has a problem and the service is indeed running when I
> encounter the issue.
>
> We have many other FreeBSD-11 hosts running local unbound and I have
> not noticed this issue anywhere else.
Is this workstation using a DHCP assigned address perhaps? I've seen
> workstation. The local_unbound dns service ceases to provide dns
> entries to the local resolver after some period of time; measured in
> many hours or days. I have checked the pf firewall logs and that is
> not blocking any traffic relating to DNS that I can detect.
>
> If I re-run local-unbound-setup then local_unbound again resolves. If
> I restart the local_unbound service then dns resolution again works.
>
> I cannot see anything in /var/log/messages that indicate that the
> unbound service has a problem and the service is indeed running when I
> encounter the issue.
>
> We have many other FreeBSD-11 hosts running local unbound and I have
> not noticed this issue anywhere else.
this on pfsense too when the external interface is restarted, perhaps a
similar thing is happening here. At least you should be able to
correlate this with loss of dns.
If so, you may be able to work around this by prepending your DNS
servers into your dhclient.conf on the workstation; here's my wlan0
config. I use this to avoid crappy wifi DNS providers when travelling,
DNScrypt would be a better solution I guess.
# /etc/dhclient.conf
# https://www.freebsd.org/cgi/man.cgi?query=dhclient.conf
interface "wlan0" {
send host-name "your.host.name";
send dhcp-lease-time 864000;
supersede domain-search "skunkwerks.at";
prepend domain-name-servers 172.16.1.1, 4.2.2.2;
request subnet-mask, broadcast-address, time-offset, routers,
domain-search, domain-name, domain-name-servers, host-name;
require subnet-mask, domain-name-servers;
0 new messages