Date: Sun, 16 Aug 2015 21:27:22 +0200 (CEST) From: Christian Kratzer <ck-lists@cksoft.de> To: Kimmo Paasiala <kpaasial@gmail.com> Cc: Kurt Jaeger <pi@opsec.eu>, "freebsd-stable@freebsd.org" <freebsd-stable@freebsd.org> Subject: Re: freebsd-update to 10.2-RELEASE broken ? Message-ID: <alpine.BSF.2.20.1508162121180.49345@noc1.cksoft.de> In-Reply-To: <CA%2B7WWSdxf-YGn3cnD0H%2BSzj4yhvLS_XtB_qPZVkXabQbf=9u%2Bw@mail.gmail.com> References: <alpine.BSF.2.20.1508161911450.49345@noc1.cksoft.de> <2C3CC22D-749A-4B92-885C-D73311997050@gid.co.uk> <20150816180715.GM40589@home.opsec.eu> <alpine.BSF.2.20.1508162103400.49345@noc1.cksoft.de> <CA%2B7WWSdxf-YGn3cnD0H%2BSzj4yhvLS_XtB_qPZVkXabQbf=9u%2Bw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, On Sun, 16 Aug 2015, Kimmo Paasiala wrote: > It could be the classic fall back to TCP on SRV records problem on > your upstream DNS forwarder if you're using one: > > http://lists.freebsd.org/pipermail/freebsd-ports/2012-May/074801.html > > The cure would be to use your own caching DNS resolver (configured to > query the authoritative name servers directly) such as dns/unbound. I run my own bind9 resolvers on freebsd 10 at both sites. I never particurlarly like the concept of an "upstream" resolver. All my resolvers are behind firewalls although different kinds. ASA at one site and freebsd pf at the other. I will investigate though. Thanks for the tip. Greetings Christian -- Christian Kratzer CK Software GmbH Email: ck@cksoft.de Wildberger Weg 24/2 Phone: +49 7032 893 997 - 0 D-71126 Gaeufelden Fax: +49 7032 893 997 - 9 HRB 245288, Amtsgericht Stuttgart Mobile: +49 171 1947 843 Geschaeftsfuehrer: Christian Kratzer Web: http://www.cksoft.de/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?alpine.BSF.2.20.1508162121180.49345>