Date: Wed, 7 Aug 2019 11:22:20 +0200 From: Wolfgang Zenker <wolfgang@lyxys.ka.sub.org> To: freebsd-stable@freebsd.org Subject: local_unbound broken in 11.2-p13 Message-ID: <20190807092220.GA49811@lyxys.ka.sub.org>
next in thread | raw e-mail | index | archive | help
Hi, I was trying to use local_unbound in a jail on a newly configured server running 11.2-p13. First using an external nameserver in resolv.conf (works) and after starting local_unbound for the first time, config was created and local_unbound starts ok, but any queries get an answer with rcode SERVFAIL. No information in /var/log/messages. Same setup on 11.2-p9 works as expected. Comparing config on both servers, it appears that local_inbound now creates a root.key file with a DS record for the root zone, while the working installation has a DNSKEY record for the root zone. Changing the root.key file to one with DNSKEY record gets local_unbound working again. Wolfgang
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20190807092220.GA49811>