Site Navigation

Date:      Tue, 2 Jul 2024 17:08:41 +0000 (UTC)
From:      "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>
To:        Craig Leres <leres@freebsd.org>
Cc:        Bakul Shah <bakul@iitbombay.org>, sthaug@nethelp.no,  freebsd-stable@freebsd.org
Subject:   Re: BIND 9.19.24 not listening to rndc port (953)
Message-ID:  <4s037291-72n0-rnq0-8o69-o0r56p3r811o@yvfgf.mnoonqbm.arg>
In-Reply-To: <57b84b90-5f95-475b-9f45-ecff2b4adf05@freebsd.org>
References:  <20240630.134609.2166404118346455953.sthaug@nethelp.no> <3ace1a1c-324a-41ce-a39c-676ef830a5e0@freebsd.org> <DBBF5056-B54A-4DBF-8183-05F0039B277D@iitbombay.org> <57b84b90-5f95-475b-9f45-ecff2b4adf05@freebsd.org>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.

--1098556516-1216463851-1719940065=:2327
Content-Type: text/plain; CHARSET=UTF-8; format=flowed
Content-Transfer-Encoding: 8BIT
Content-ID: <3s59p25o-6r1s-46qn-0648-8qq803p53n1n@mnoonqbm.arg>

On Mon, 1 Jul 2024, Craig Leres wrote:

> On 7/1/24 10:17, Bakul Shah wrote:
>> On Jul 1, 2024, at 9:18 AM, Craig Leres <leres@freebsd.org> wrote:
>>> 
>>> On 6/30/24 04:46, sthaug@nethelp.no wrote:
>>>> Short description: Fresh install of bind9-devel-9.19.24_1 doesn't
>>>> listen to localhost port 953, with the result that rndc doesn't work.
>>>> Problem is 100% reproducible.
>>> 
>>> bind-tools-9.18.27_1 with 14.1-RELEASE-p1 suffers from this as well.
>> 
>> I was ignoring this until now but finally chased it down! I had to add
>>
>>         inet 127.0.0.1 port 953
>>           allow { 127.0.0.1; } keys { "rndc-key"; };
>> 
>> to "controls { ... }" in /etc/named.conf
>
> Ah... I already had that but I see now that the problem is due to the 14.1 
> issue I reported (see  "FreeBSD 14.x localhost source address" on the 
> freebsd-stable list).
>
>> For 14.1 at least, this has the side effect that the source address
>> for anything in the 127.0.0.0/8 domain becomes 127.0.0.2 instead
>> of 127.0.0.1.
>
> So I changed named.conf and now it works!

[... hijacking ...]

This all wouldn't be a problem if they wouldn't have taken away UNIX
Domain sockets ... 
https://gitlab.isc.org/isc-projects/bind9/-/issues/4311

Maybe more people want to complain ;-)

-- 
Bjoern A. Zeeb                                                     r15:7
--1098556516-1216463851-1719940065=:2327--

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4s037291-72n0-rnq0-8o69-o0r56p3r811o>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact