From owner-freebsd-hackers@FreeBSD.ORG Thu Sep 18 11:51:36 2014 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 8361FA7E for ; Thu, 18 Sep 2014 11:51:36 +0000 (UTC) Received: from new1-smtp.messagingengine.com (new1-smtp.messagingengine.com [66.111.4.221]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 55C1882A for ; Thu, 18 Sep 2014 11:51:36 +0000 (UTC) Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by gateway2.nyi.internal (Postfix) with ESMTP id 88BA316A7 for ; Thu, 18 Sep 2014 07:51:34 -0400 (EDT) Received: from web3 ([10.202.2.213]) by compute3.internal (MEProxy); Thu, 18 Sep 2014 07:51:34 -0400 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=message-id:from:to:mime-version :content-transfer-encoding:content-type:subject:date:in-reply-to :references; s=smtpout; bh=TEYNm/uTCsjJFBRFEW5oQhw0zx0=; b=FCcVU 4BBAX9gh/h+a1pxQ9tHkWbnGn9AOKZE7TgKKIPKvXHKnvnqT7T3gcSi75q4nUd6e aRwvKixlji/zCNhKN+M8aROTO8mTDzmVyzQrFRR9Z2XMMfWVjPkKbzFhab5P+vtU 9YmaA79896TQfyr5nwcMPIajo8OlS1fe426Nr4= Received: by web3.nyi.internal (Postfix, from userid 99) id 16D3710ED4A; Thu, 18 Sep 2014 07:51:34 -0400 (EDT) Message-Id: <1411041094.640133.168972769.6D823A59@webmail.messagingengine.com> X-Sasl-Enc: 5vmAFSg/ebMzKFyUxgP69OqupjT/VXpyAq/oPNVpeMgV 1411041094 From: Mark Felder To: freebsd-hackers@freebsd.org MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain X-Mailer: MessagingEngine.com Webmail Interface - ajax-68d12f42 Subject: Re: unbound - what is wrong Date: Thu, 18 Sep 2014 06:51:34 -0500 In-Reply-To: References: X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Sep 2014 11:51:36 -0000 On Thu, Sep 18, 2014, at 04:29, Wojciech Puchar wrote: > i try to make it resolve both global zones and my own intranet zones > > i added to /var/unbound/conf.d/ file intra.conf > > private-address: 10.0.0.0/8 > local-zone: "10.in-addr.arpa." transparent > local-zone: "intra." transparent > forward-zone: > name: intra. > forward-addr: 10.0.1.1 > forward-zone: > name: 10.in-addr.arpa. > forward-addr: 10.0.1.1 > > > reverse lookups on 10/8 works fine > > [root@laptop /var/unbound]# host 10.0.1.1 > 1.1.0.10.in-addr.arpa domain name pointer intra. > > but forward: > > [root@laptop /var/unbound]# host intra. > Host intra not found: 2(SERVFAIL) > > > what is wrong? > Can you confirm that a dig or drill @10.0.1.1 for intra hostnames works correctly? I previously had a setup that required two additional lines. See below: private-domain: localdomain domain-insecure: localdomain forward-zone: name: "localdomain" forward-addr: 192.168.1.1