From owner-freebsd-questions@freebsd.org Mon Dec 19 10:50:39 2016 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id EF3C5C8724C for ; Mon, 19 Dec 2016 10:50:39 +0000 (UTC) (envelope-from francesco.scaglione@sfr.fr) Received: from smtp26.services.sfr.fr (smtp26.services.sfr.fr [93.17.128.20]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id AA6451EBA for ; Mon, 19 Dec 2016 10:50:39 +0000 (UTC) (envelope-from francesco.scaglione@sfr.fr) Received: from biblioteca (production-radiop.rain.fr [194.206.179.1]) by msfrf2628.sfr.fr (SMTP Server) with ESMTP id 2BE7E1C00082F for ; Mon, 19 Dec 2016 11:50:37 +0100 (CET) Received: from biblioteca (production-radiop.rain.fr [194.206.179.1]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: scaglione.francesco@neuf.fr) by msfrf2628.sfr.fr (SMTP Server) with ESMTPSA for ; Mon, 19 Dec 2016 11:50:35 +0100 (CET) Authentication-Results: sfr.fr; auth=pass (LOGIN) smtp.auth=scaglione.francesco@neuf.fr Date: Mon, 19 Dec 2016 11:50:34 +0100 From: francesco scaglione To: freebsd-questions@freebsd.org Subject: Re: Pkg problem after upgrading from 9.3 to 10.3 Message-ID: <20161219115034.547f5732@biblioteca> In-Reply-To: References: <20161218154643.106f91f2@Stream> <55bca76f-bff9-d528-1096-1f5b7594c8c3@FreeBSD.org> <20161218183041.77f47019@Stream> <20161218233805.1978ee55@Stream> X-Mailer: Claws Mail 3.14.1 (GTK+ 2.24.25; x86_64-pc-linux-gnu) MIME-Version: 1.0 X-sfr-mailing: LEGIT Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 Dec 2016 10:50:40 -0000 On Mon, 19 Dec 2016 01:09:43 +0000 Matthew Seaman wrote: > On 18/12/2016 22:38, francesco scaglione wrote: > > On Sun, 18 Dec 2016 17:59:47 +0000 > > Matthew Seaman wrote: > > > >> On 18/12/2016 17:30, francesco scaglione wrote: > >>> On Sun, 18 Dec 2016 17:06:29 +0000 > >>> Matthew Seaman wrote: > >> > >>>> This sounds like a problem with the DNS -- although why should > >>>> this affect you after upgrading to 10.x? Did you switch to > >>>> enabling the local_unbound service when you upgraded? > >>> > >>> Uhm, I don't think so... I just answered "y" to a few "does this > >>> look reasonable to you" questions. How could I check this? > >> > >> Do you have: > >> > >> local_unbound_enable="YES" > >> > >> in /etc/rc.conf? > > > > Not now, no; was it there in 9.3? > > No -- local_unbound was new in 10.0 > > >>>> What does this DNS query return for you? > >>>> > >>>> % dig IN SRV _http._tcp.pkg.freebsd.org > >>>> > >>>> That should give you a list of download sites with > >>>> 'pkgmir.geo.freebsd.org' marked as the highest priority. > >>>> Connecting to this repo by name will automatically direct you to > >>>> the closest package mirror to your location. That's > >>>> pkg0.bme.freebsd.org for people in Europe. > >>> > >>> Right, I've tried first with dig: > >>> > >>> $ dig IN SRV _http._tcp.pkg.freebsd.org > >>> dig: not found > >> > >> Heh. Yes, dig is no longer in the base system in 10.x. I > >> reflexively install bind-tools nowadays. > >> > >>> and then with drill: > >>> > >>> $ drill IN SRV _http._tcp.pkg.freebsd.org > >>> Warning: Could not create a resolver structure: Could not open the > >>> files ((null)) Try drill @localhost if you have a resolver running > >>> on your machine. > >> > >> OK, this isn't good. I suspect this is the cause of your problems. > >> > >> Try this. > >> > >> # sysrc local_unbound_enable=YES > >> # service local_unbound setup > >> # service local_unbound start > > > > # sysrc local_unbound_enable=YES > > local_unbound_enable: NO -> YES > > > > # service local_unbound setup > > Performing initial setup. > > Extracting forwarders from /etc/resolv.conf. > > /usr/sbin/local-unbound-setup: cannot open /etc/resolv.conf: No such > > file or directory > > > > Yeah -- that's the smoking gun as to why pkg(8) was having problems. > You didn't have /etc/resolv.conf or anything set up so your system > could do DNS lookups. > > > No forwarders found in resolv.conf, unbound will recurse. > > This means that local_unbound will do all the work of DNS lookups > itself, rather than handing the task off to the resolvers provided by > your ISP (the 'forwarders' it mentions.) Maybe I should have told in the first place that this is a small dedicated hosted server, I'm sorry. > It's 6 of one and half-a-dozen of the other as to whether it's better > to have forwarders or just have local_unbound recurse for itself. > > > /var/unbound/lan-zones.conf created > > /var/unbound/control.conf created > > /var/unbound/unbound.conf created > > /etc/resolvconf.conf created > > /usr/sbin/local-unbound-setup: cannot open /etc/resolv.conf: No such > > file or directory > > /etc/resolv.conf created > > > > # service local_unbound start > > Starting local_unbound. > > > >> and try again with drill(1). If there is still no joy, let us know > >> what the contents of /etc/resolv.conf and /var/unbound/forward.conf > >> are. > > > > # drill IN SRV _http._tcp.pkg.freebsd.org > > Error: error sending query: No (valid) nameservers defined in the > > resolver > > Curious. This should work if the local_unbound service is up and > running. > > > But at least, now I have: > > > > #pkg update > > Updating FreeBSD repository catalogue... > > Fetching meta.txz: 100% 944 B 0.9kB/s 00:01 > > Fetching packagesite.txz: 100% 6 MiB 2.0MB/s 00:03 > > Processing entries: 100% > > FreeBSD repository update completed. 25735 packages processed. > > > > # pkg upgrade > > Updating FreeBSD repository catalogue... > > FreeBSD repository is up-to-date. > > All repositories are up-to-date. > > Checking for upgrades (0 candidates): 100% > > Processing candidates (0 candidates): 100% > > Checking integrity... done (0 conflicting) > > Your packages are up to date. > > > > Should I be happy with that or shall I dig further? > > So, enabling local_unbound has meant that you can successfully do DNS > lookups now. You don't *have* to do anything more. It does, however, > seem you somehow mislaid the configuration that you must have been > using with 9.x --- entirely up to you if you can recover what that > was or if you'ld prefer to revert back to that. I'll pay more attention before the next upgrade! > Cheers, > > Matthew Thanks again for your help Matthew: for this thread in particular, of course, and for all the others in which your contribution is so important. Francesco