From owner-freebsd-questions@FreeBSD.ORG Tue Nov 4 14:50:18 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id DC712873 for ; Tue, 4 Nov 2014 14:50:17 +0000 (UTC) Received: from mail-yh0-x22a.google.com (mail-yh0-x22a.google.com [IPv6:2607:f8b0:4002:c01::22a]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 9767DD41 for ; Tue, 4 Nov 2014 14:50:17 +0000 (UTC) Received: by mail-yh0-f42.google.com with SMTP id 29so7898876yhl.1 for ; Tue, 04 Nov 2014 06:50:16 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=lAWGgmpysDvPSnHFSKqC+4jvsVNgYIw0WsgbEDDGahg=; b=I2OGvdTkY0PbUTAg2084mzNHRk/2Vin1VpGGvYK/yxpwfdUe1qhzFV3fWHyj0DRj8F zBzBqwQhZZoaC6fMgSNtw636CEIims2zh2f0Bghr3vM4pZDbfv0RreC9ntcpB0NlfFcT jFcOjjQdptAJfEaRg9RrLO9PaeA731C7E8H5ayU1oDA/PpZpUz1XqQzytBpHj/TlUqkV ACzH2qdqqqeW1au3PaCfIB18oGlRFmXVbQ7lEmCBDYViRXk+R8xqW+c+9rRiuphlXHjN W7odlKtylvjuxBTezMzzCG1UQBzq2sBLPgGNTSSW0vdTJewYbv+l0BJ1mSF1s3JK7usf xyuA== MIME-Version: 1.0 X-Received: by 10.236.47.161 with SMTP id t21mr35842533yhb.100.1415112616773; Tue, 04 Nov 2014 06:50:16 -0800 (PST) Received: by 10.170.156.139 with HTTP; Tue, 4 Nov 2014 06:50:16 -0800 (PST) In-Reply-To: References: <86lhnup5l3.fsf@gly.ftfl.ca> Date: Tue, 4 Nov 2014 14:50:16 +0000 Message-ID: Subject: Re: Can't get Unbound caching/recursive server to answer on outside IP From: krad To: freebsd@fongaboo.com Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.18-1 Cc: FreeBSD Questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 04 Nov 2014 14:50:18 -0000 have a look at sockstat -l On 3 November 2014 01:49, wrote: > > Have a FreeBSD 10 machine. Have two outside IPs bound to it. First IP has > NSD running as an authoritative server. THis is specified specifically in > the interface entry of nsd.conf. > > Trying to run caching/recursive nameserver with unbound on the second IP. > I specified the following entries in unbound.conf: > > interface: 127.0.0.1 > interface: > > > I followed the tutorial at https://calomel.org/unbound_dns.html. I added > lines for unbound-control. But other than that, and the extra interface > lines, its as specified in the tutorial... Oh, also the locations are > modified from /var/unbound/etc/ to /var/unbound/. > > I can get it to resolve when I run nslookup and set the server to > 127.0.0.1, but not when I set it to the second IP. > > I'm wondering if something else is floating around on 127.0.0.1 port 53? > Because when I run unbound-control dump_requestlist, I get an empty list. I > would think I would see the requests I made successfully on 127.0.0.1. > > BTW, I have this in IPFW: > > allow udp from any to any dst-port 53 in > > > Any ideas why I can't get answers on the second IP? > > > ------------------------------------------------------------------------- > shot through the heart ooh baby do you know what that's worth > and you're to blame ooh heaven is a place on earth > darling you give love they say in heaven love comes first > a bad name we'll make heaven a place on earth > ORBITAL "Halcyon Live" > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions- > unsubscribe@freebsd.org" >