From owner-freebsd-questions@freebsd.org Fri Jan 1 17:25:45 2016 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id C7DFAA5E260 for ; Fri, 1 Jan 2016 17:25:45 +0000 (UTC) (envelope-from solene@bsd.zplay.eu) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id B6C9711C1 for ; Fri, 1 Jan 2016 17:25:45 +0000 (UTC) (envelope-from solene@bsd.zplay.eu) Received: by mailman.ysv.freebsd.org (Postfix) id B4584A5E25D; Fri, 1 Jan 2016 17:25:45 +0000 (UTC) Delivered-To: questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id B2DBCA5E25A; Fri, 1 Jan 2016 17:25:45 +0000 (UTC) (envelope-from solene@bsd.zplay.eu) Received: from bsd.zplay.eu (bsd.zplay.eu [62.210.240.224]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "bsd.zplay.eu", Issuer "StartCom Class 1 Primary Intermediate Server CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id F019011C0; Fri, 1 Jan 2016 17:25:44 +0000 (UTC) (envelope-from solene@bsd.zplay.eu) Received: from localhost (bsd.zplay.eu [local]) by bsd.zplay.eu (OpenSMTPD) with ESMTPA id df4012c2; Fri, 1 Jan 2016 18:18:59 +0100 (CET) To: "C.L. Martinez" Subject: Re: SERVFAIL errors with FreeBSD using unbound only X-PHP-Originating-Script: 0:rcube.php MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit Date: Fri, 01 Jan 2016 18:18:59 +0100 From: =?UTF-8?Q?Sol=C3=A8ne_Rapenne?= Cc: questions@freebsd.org, owner-freebsd-questions@freebsd.org In-Reply-To: <5686AFEA.2020501@gmail.com> References: <5686AFEA.2020501@gmail.com> Message-ID: <02feeed81ba7d96058df2df5d4b202a3@mail.zplay.eu> X-Sender: solene@bsd.zplay.eu User-Agent: Roundcube Webmail/1.1.3 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Jan 2016 17:25:46 -0000 Le 2016-01-01 17:57, C.L. Martinez a écrit : > Hi all, > > I have configured unbound as a cache nameserver in a FreeBSD 10.2 > amd64 (fully patched) host. At the same time, I am using nsd to > resolve names for my internal hosts. > > But there is a problem: unbound doesn't works/redirect reverse > queries for IP address to nsd daemon. > > My current unbound.conf: > > server: > interface: 127.0.0.1 > interface: 172.21.55.14 > interface: ::1 > do-ip6: no > username: unbound > directory: /var/unbound > chroot: /var/unbound > pidfile: /var/run/local_unbound.pid > auto-trust-anchor-file: /var/unbound/root.key > access-control: 0.0.0.0/0 refuse > access-control: 127.0.0.0/8 allow > access-control: 172.21.55.0/28 allow > access-control: ::0/0 refuse > access-control: ::1 allow > hide-identity: yes > hide-version: yes > do-not-query-localhost: no > > > include: /var/unbound/forward.conf > #include: /var/unbound/lan-zones.conf > include: /var/unbound/control.conf > #include: /var/unbound/conf.d/*.conf > > stub-zone: > name: "mydom.org" > stub-addr: 127.0.0.1@5353 > > stub-zone: > name: "21.172.in-addr.arpa" > stub-addr: 127.0.0.1@5353 > > > nsd is listening on localhost, port 5353. When I try to do some > reverse query from a linux client: > > [root@cstbbvn01 ~]# nslookup >> 172.21.55.14 > Server: 172.21.55.14 > Address: 172.21.55.14#53 > > ** server can't find 14.55.21.172.in-addr.arpa: SERVFAIL >> 172.21.55.1 > Server: 172.21.55.14 > Address: 172.21.55.14#53 > > ** server can't find 1.55.21.172.in-addr.arpa: SERVFAIL >> exit > > > Every time, a servfail is displayed. All other queries works ok. > Disabling unbound and using nsd only, all works ok also. > > Then, what am I doing wrong with unbound?? > > Thanks. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" Hi, You should add this in your unbound config file : local-zone: 21.172.in-addr.arpa. transparent Also, I am using unbound + nsd and in my config file I have forward-addr instead of stub-zone but I don't remember the difference, and as far as I remember I was using stub-zone before and it was working.