From owner-freebsd-stable@freebsd.org Mon Aug 6 19:31:51 2018 Return-Path: Delivered-To: freebsd-stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 13FAE1062EEE for ; Mon, 6 Aug 2018 19:31:51 +0000 (UTC) (envelope-from kob6558@gmail.com) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 8E4D785EE0 for ; Mon, 6 Aug 2018 19:31:50 +0000 (UTC) (envelope-from kob6558@gmail.com) Received: by mailman.ysv.freebsd.org (Postfix) id 5050B1062EEC; Mon, 6 Aug 2018 19:31:50 +0000 (UTC) Delivered-To: stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 2E9501062EEB for ; Mon, 6 Aug 2018 19:31:50 +0000 (UTC) (envelope-from kob6558@gmail.com) Received: from mail-oi0-x22b.google.com (mail-oi0-x22b.google.com [IPv6:2607:f8b0:4003:c06::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id B352E85EDA for ; Mon, 6 Aug 2018 19:31:49 +0000 (UTC) (envelope-from kob6558@gmail.com) Received: by mail-oi0-x22b.google.com with SMTP id s198-v6so24220524oih.11 for ; Mon, 06 Aug 2018 12:31:49 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=bGrncOKQMMA/LrHE1w0a/6sa4YO7WsGvB6AFJkGIekA=; b=YUo113ZgmayNZXSYcstL0K2wSBJMIO+1XpTKRJKtz0Eql9QUE8xMji8X8nS9xFL0DJ mGqZEjoD6MX9alKPU4OSpHLSEjKP9NiUgn5hjlTm1a81xl4fQlMKFepv6R1rG6WHcxi9 Xt2G1ayTivLRy6k2ElaEWgtfPYPkVIHJ3iidpITgA7G9UyrEu2gjjsv1CbUYdB/1J3Wu VPPDjuQdKjep/2a6jxdqbmZt7dn+gd9oQ4DSACzWZNSEsDCN70rE1sKsXi4Oa9q7JMAV nPo5dq3l7+h5UPRP734p2+w9NwmIUq5ev9WCfQVH3YRxS1BVoQG34P8elbmv8QfRuE7c JZPQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=bGrncOKQMMA/LrHE1w0a/6sa4YO7WsGvB6AFJkGIekA=; b=PLZYD6yZrg+E4PjlRQxL9LzNl1xezT4oA85Nyl+2DX9z7wurR+B5hukJwG6U7TpeLb mTfxz3SeQ6Os4s3MwXwdl4KlI7C2oxd+rne3GnkSB3rkuu9tZo2oC22ftwue8jZF9gRS pVf/ZgeS8C6AT/67bN59sBsSeM0tkYZzlhf442OdjwcVKBqX/foifb15XB60Q049LvLa sIxBRzzzyT3CaFLOFFWjh1sUuB5pLXNvqZMFTPUTfK2MNwtCM6PUEx6It6m0UU5muLlN aF27tH3KguedIzE6gHslLW7xc0li+I7Zd/t6bmTRGOK9oI7oU03oWj7eBvi03YbFWv4o hLtQ== X-Gm-Message-State: AOUpUlHKodmdtfPLTfdi38et1itgu8izd9n1jaSoAz1/J7F2OuJzON3D 51zHOiY+RYA/d9RRmZKfP0WG9wqnaz5A7iw+GcANAEWF X-Google-Smtp-Source: AA+uWPwlntWnZOS8IUEf79ma//f9Y+fb4+7B7SYvVWZMmo4ZTQ32U9Po3j6c+0hiewdUGwGPD2C6jJwDkCmG/Xbschw= X-Received: by 2002:aca:5354:: with SMTP id h81-v6mr14738998oib.299.1533583908950; Mon, 06 Aug 2018 12:31:48 -0700 (PDT) MIME-Version: 1.0 Sender: kob6558@gmail.com Received: by 2002:ac9:2c55:0:0:0:0:0 with HTTP; Mon, 6 Aug 2018 12:31:48 -0700 (PDT) In-Reply-To: <20180806145717.GE30738@phouka1.phouka.net> References: <20180806145717.GE30738@phouka1.phouka.net> From: Kevin Oberman Date: Mon, 6 Aug 2018 12:31:48 -0700 X-Google-Sender-Auth: ijg2rhJOxSsZfTK0OQqNH6YP21g Message-ID: Subject: Re: How do I stop using local_unbound ? To: John Kennedy Cc: Pete French , "stable@freebsd.org" Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.27 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.27 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Aug 2018 19:31:51 -0000 On Mon, Aug 6, 2018 at 7:57 AM, John Kennedy wrote: > On Mon, Aug 06, 2018 at 03:06:00PM +0100, Pete French wrote: > > having enabled local_unbound in /etc/rc.d how do I remove that > > and go back to using just DHCP delivered nameservers ? I > > set it to 'NO' but yet the machine still seems to have traces of > > the config in other places and keeps trying to use them, for reasons I > > dont understand. > > > > Is there a quyick guide to clearing this off a system when you dont want > to use > > it anymore ? I get that it needs to be slightly complex to do what it > does, > > but its proving very hard to fix the broken DNS looksup! > > Hmm. First, make sure that it isn't running (service local_unbound stop, > etc). > Then look at your /etc/resolv.conf -- unbound tends to rewrite that on > initial > startup, taking some of it's settings and inserting itself into the middle > as a > caching DNS server. At the very least, you want something like this: > > nameserver 8.8.8.8 > > I think the default DHCP client stomps all over /etc/resolv.conf fairly > well, > but see what options are in there (for example, options for > domain-name-servers > and domain-name). The stock /etc/dhclient.conf is all comments. > > I have issues with the DNS results my ISP returns to me, but setting up a > cache > or using sites like 8.8.8.8 (google public DNS, if you don't mind feeding > the > beast) fixes that. > If you don't want to feed the beast, maybe 9.9.9.9 (Quad9). You can read about it at: https://arstechnica.com/information-technology/2017/11/new-quad9-dns-service-blocks-malicious-domains-for-everyone/ -- Kevin Oberman, Part time kid herder and retired Network Engineer E-mail: rkoberman@gmail.com PGP Fingerprint: D03FB98AFA78E3B78C1694B318AB39EF1B055683