From owner-freebsd-stable@FreeBSD.ORG Sun Jun 29 11:28:31 2014 Return-Path: Delivered-To: freebsd-stable@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 86ECBEA3 for ; Sun, 29 Jun 2014 11:28:31 +0000 (UTC) Received: from woozle.rinet.ru (woozle.rinet.ru [195.54.192.68]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id ED8EE2142 for ; Sun, 29 Jun 2014 11:28:30 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by woozle.rinet.ru (8.14.5/8.14.5) with ESMTP id s5TBSQ4G087389 for ; Sun, 29 Jun 2014 15:28:26 +0400 (MSK) (envelope-from marck@rinet.ru) Date: Sun, 29 Jun 2014 15:28:26 +0400 (MSK) From: Dmitry Morozovsky To: freebsd-stable@FreeBSD.org Subject: stable/10: unbound refuses to forward some DNS queries Message-ID: User-Agent: Alpine 2.00 (BSF 1167 2008-08-23) X-NCC-RegID: ru.rinet X-OpenPGP-Key-ID: 6B691B03 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3 (woozle.rinet.ru [0.0.0.0]); Sun, 29 Jun 2014 15:28:26 +0400 (MSK) X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 29 Jun 2014 11:28:31 -0000 Dear colleagues, after upgrading my home file server to stable/10 I found that after turning on local unbound reverse DNS queries for my RFC1918 zone stop working: root@hamster:/# host 192.168.33.1 1.33.168.192.in-addr.arpa domain name pointer jennie.wpub.woozle.net. root@hamster:/# host 192.168.33.1 127.1 Using domain server: Name: 127.1 Address: 127.0.0.1#53 Aliases: Host 1.33.168.192.in-addr.arpa not found: 3(NXDOMAIN) Moreover, turning on unbound verbosity, I do not actually see right queries in outgoing interface: root@hamster:/# tcpdump -nvvilo0 port 53 tcpdump: listening on lo0, link-type NULL (BSD loopback), capture size 65535 bytes 15:18:39.304353 IP (tos 0x0, ttl 64, id 4862, offset 0, flags [none], proto UDP (17), length 71, bad cksum 0 (->69a6)!) 127.0.0.1.13508 > 127.0.0.1.53: [bad udp cksum 0xfe46 -> 0xaf70!] 52525+ PTR? 1.33.168.192.in-addr.arpa. (43) 15:18:39.304400 IP (tos 0x0, ttl 64, id 4863, offset 0, flags [none], proto UDP (17), length 130, bad cksum 0 (->696a)!) 127.0.0.1.53 > 127.0.0.1.13508: [bad udp cksum 0xfe81 -> 0x0ce5!] 52525 NXDomain* q: PTR? 1.33.168.192.in-addr.arpa. 0/1/0 ns: 168.192.in-addr.arpa. SOA localhost. nobody.invalid. 1 3600 1200 604800 10800 (102) and no query to forward server. configs are standard, generated by unbound setup script: ==> /var/unbound/forward.conf <== # Generated by local-unbound-setup forward-zone: name: . forward-addr: 192.168.33.2 ==> /var/unbound/unbound.conf <== # Generated by local-unbound-setup server: username: unbound directory: /var/unbound chroot: /var/unbound pidfile: /var/run/local_unbound.pid auto-trust-anchor-file: /var/unbound/root.key include: /var/unbound/forward.conf Any hints? Or did I missed something trivial? -- Sincerely, D.Marck [DM5020, MCK-RIPE, DM3-RIPN] [ FreeBSD committer: marck@FreeBSD.org ] ------------------------------------------------------------------------ *** Dmitry Morozovsky --- D.Marck --- Wild Woozle --- marck@rinet.ru *** ------------------------------------------------------------------------