Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 6 Sep 2016 11:49:51 +0200
From:      Eduardo Morras <emorrasg@yahoo.es>
To:        freebsd-questions@freebsd.org
Subject:   Re: Query re. /etc/resolv.conf...
Message-ID:  <20160906114951.930913f90517353398d38e52@yahoo.es>
In-Reply-To: <6666070D3E503A5E5747ED16@[10.12.30.106]>
References:  <6666070D3E503A5E5747ED16@[10.12.30.106]>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Tue, 06 Sep 2016 10:03:51 +0100
Karl Pielorz <kpielorz_lst@tdx.co.uk> wrote:

> 
> Hi,
> 
> We have a number of 10.3-RELEASE-p7 boxes - on which we use unbound
> as a local DNS / forwarder. Unbound forwards to a pool of 3 DNS
> servers (this is good, because if one fails - unbound handles it).
> 
> In '/etc/resolv.conf' we have:
> 
> search [blah]
> nameserver 127.0.0.1
> nameserver 192.168.0.1
> 
> 
> We've done this - so that if unbound crashes, the machine should
> still be able to resolve names - it'll just be subject to a delay as
> the resolver library tries 127.0.0.1 (unbound), doesn't get an answer
> so tries the 192.168.0.1 name server (kind of as a last resort).
> 
> 
> This seems to work OK. However - if we 'turn off' 192.168.0.1, all
> local name resolution is subject to a delay, even if unbound is alive
> and well - and able to forward/resolve names.
> 
> Commenting out the 192.168.0.1 nameserver line, and everything works
> as before, but with it listed (and down) the delay comes back.
> 
> 
> Can someone confirm this should work that way? - I thought by default
> it was always "try the first, timeout, try the second..."

Are you sure unbound listen on 127.0.0.1? What a 

%sockstat | grep unbound 

shows?

Mine: 
unbound  unbound    527   3  udp6   ::1:53                *:*
unbound  unbound    527   4  tcp6   ::1:53                *:*
unbound  unbound    527   5  udp4   127.0.0.1:53          *:*
unbound  unbound    527   6  tcp4   127.0.0.1:53          *:*
unbound  unbound    527   7  stream /var/run/local_unbound.ctl
unbound  unbound    527   8  stream -> ??
unbound  unbound    527   9  stream -> ??


> It doesn't appear to be working that way for us :(
> 
> -Kp
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe@freebsd.org"


---   ---
Eduardo Morras <emorrasg@yahoo.es>

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20160906114951.930913f90517353398d38e52>