unbound

EFFECT drill resolves r0.z201 correctly to 192.168.201.1. host resolves r0.z201 correctly to 192.168.201.1. ping works when given argument 192.168.201.1. ping doesn't work when given argument r0.z201. (fails to resolve) OBSERVATIONS When using truss I can see that ping does...

Hello everyone, I want to migrate my current DNS server from a Windows Server to FreeBSD. The DNS server should have the following features: Authorative DNS (for my Internal network only) Resolving DNS High Availability So far I have found named (aka. BIND9) and nsd + local-unbound as...

I've read through a bunch of documentation but I'm not sure of a few things, so I'm looking for some tips before I mess up my office. Thanks in advance! Here's our setup in a small office: 1. Internet comes in to an ASUS RT-AC1900P WIFI router and then to a simple switch. We have 5 Windows...

I've been running dns/unbound for quite a while (at least a couple of years) on multiple machines - for starters, both my mail server and my firewall box use it as caching dns server. Both use the same configuration, and have done so for months without any issues, if not longer. Over the last...

Hi All, I have some log messages which says "kernel: em0: promiscuous mode disabled" and enabled again, Am only running Unbound DNS resolver in my Freebsd 12.1 release p5. If it is not recomended to change the status can you explain me how to fix the state of promiscuous mode.

Am trying to Build a Firewall for Unbound DNS resolver since a month and was not successful, solved almost all the configs except the IPFW rules, using FreeBSD 12.1-RELEASE-p5 Below are my rule list NOTE: a.a.a.a , b.b.b.b, c.c.c.c and d.d.d.d are my ipv4 Public IP pools...

I've been trying to figure this one out. I'm using FreeBSD 11.2-RELEASE-p10 amd64, unbound Version 1.9.1 I have dual WAN, but one is solely for failover (no DNS queries should occur on failover while primary WAN is up). Is there any way to only use the primary WAN as the outgoing-interface...

I'm currently using hblock with Arch Linux on my laptop: and now I'm wondering what the recommended approach for something like this could be when using FreeBSD. What comes to mind: Simply stick to using a hosts file Use a DNS resolver like unbound with a blocklist Use a DNS proxy like...

Hi All, I am trying to create SRV records in the NSD zonefile for network services. Is this possible with NSD and Unbound running on FreeBSD 11.2? The format I am using looks like this: ;SRV Records _cisco._tcp IN SRV 10 10 5060 cpub.example.com. _login._tcp...

Hi there, I'm too new to BSD and pf so I can't accomplish the following task and receiving generic "syntax error", maybe because of tables or macros. Here's the scenario: a server in DMZ with unbound (serving as resolver to other machines in DMZ) and NSD (authoritative for an Internet domain)...

Hi guys, i am wondering if i can setup my unbound to serve as dns over tls. It will serve as full recursive mode. The reason why i wanna do that so i can use unbound outside my local network, eg: on the road mobile. I am aware that i can setup unbound to forward queries to 3rd party dns server...

Hi All I have unbound running on my laptop. When I booted up today I couldn't resolve any hosts. Finally figured out it was the resolv.conf. I had to uncomment the external google nameserver to resolve any hosts. So my resolv.conf now looks like this # Generated by resolvconf search...

I have not found anywhere in the docs how to make selections from syslog by ident. I use chrooted Unbound and I've configured it to write its log to syslog. I've found in syslog.conf an example how to select records from syslog by program name: !unbound *.* /var/log/unbound.log !* But...

Good day! I have a FreeBSD 11.1 amd64 box as router for about 300 users. On that server works unbound (from system, not ports) as resolver for network. And in /var/log/messages I such messages: Jan 30 11:29:10 MAIN-GATE unbound: [59552:2] notice: sendto failed: No buffer space available Jan 30...

Hello, Very important change was in the package 'unbound' of the world DNSSEC. The changing or "rolling" of the KSK Key was originally scheduled to occur on 11 October, but it is being delayed because some recently obtained data shows that a significant number of resolvers used by Internet...

There is a network topology which cannot be changed/altered as following: [FILESERVER]---192.168.254.1---->|======| [LANPC1]--------192.168.254.x---->| SWITCH |<--192.168.254.254--[MODEM]--->INTERNET [LANPC2]--------192.168.254.x---->|======| The FILESERVER (FreeBSD 11.1-RELEASE) is running...

Hello, I run a server who was automatically set up by OVH. The /etc/rc.conf contains the line local_unbound_enable="YES" There is no unbound_enable="YES" in the /etc/rc.conf, and the unbound service is not running. (Edit: Well, actually, I don't know. # service unbound status Cannot...

This how-to assumes that you are a somewhat experienced FreeBSD user, and understand how to use dd carefully to avoid data loss. It also assumes that you are able to restore your system to a working configuration if anything goes wrong. There is a Synopsis/Condensed Version below for the...

Searching this forum I've seen a number of ways to block youtube using ubound DNS. Problem is, it seems the methods are outdated. When I try the "local-zone "something" static" thing, I receive a syntax error upon trying restart the service. I'm on FreeBSD 11 and using dns/unbound. Can someone...

I'm just setting up an unbound server as a local resolver for our network. I'm not really seeing any actual issues but when running lookups from localhost, it's a bit disconcerting that the lookup sometimes hangs for over 10 seconds before finally returning a response. Even with the delay, the...