Date: Fri, 24 Aug 2018 20:14:03 +0300 From: Stefan Lambrev <cheffo@freebsd-bg.org> To: Matt Smith <matt.xtaz@gmail.com>, Stefan Lambrev <cheffo@freebsd-bg.org>, freebsd-stable@freebsd.org Subject: Re: Strange unbound behaviour Message-ID: <CAHtsMQ0hTEkE-8STt8BreyiycrYdyJ_YMP7QUOE%2BVFwJDvwTqA@mail.gmail.com> In-Reply-To: <20180824155119.GA66993@gmail.com> References: <CAHtsMQ1JDWoe3O4PaU9VF%2Bw0-1Pz6eq3NmnT3UPj6QHebciLWA@mail.gmail.com> <20180824155119.GA66993@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hm.. looks like I missed this one. Will test and let you know. On Fri, Aug 24, 2018 at 6:51 PM, Matt Smith <matt.xtaz@gmail.com> wrote: > On Aug 24 16:28, Stefan Lambrev wrote: > >> Hi, >> >> I have two DNS servers up and running for my home setup. But for some >> reason both stop resolving at some point. >> >> 1st instance is with unbbound from ports, second from base system but >> configs are very similar: >> >> # cat /usr/local/etc/unbound/unbound.conf >> directory: /usr/local/etc/unbound >> chroot: /usr/local/etc/unbound >> >> If I restart the service it works again... >> >> > In man(5) unbound.conf it says this: > > # make sure unbound can access entropy from inside the chroot. > # e.g. on linux the use these commands (on BSD, devfs(8) is used): > # mount --bind -n /dev/random /etc/unbound/dev/random > > I can see that you use a chroot. I'm wondering if you've not mounted a > /dev/random into the chroot and maybe it's running out of free entropy for > something and blocking. This might explain why it works for a while and > then fails. > > I do this: > > In /etc/fstab: > > devfs /usr/local/etc/unbound/dev devfs rw 0 > 0 > > In /etc/rc.conf: > > devfs_set_rulesets="/usr/local/etc/unbound/dev=devfsrules_unbound" > > In /etc/devfs.rules: > > [devfsrules_unbound=10] > add hide > add path random unhide > > Might help? > > -- > Matt >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAHtsMQ0hTEkE-8STt8BreyiycrYdyJ_YMP7QUOE%2BVFwJDvwTqA>