From nobody Sat Sep 23 22:20:02 2023 X-Original-To: freebsd-stable@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4RtNqm5lzpz4vKNZ for ; Sat, 23 Sep 2023 22:20:20 +0000 (UTC) (envelope-from bc979@lafn.org) Received: from mail.sermon-archive.info (sermon-archive.info [47.181.130.121]) by mx1.freebsd.org (Postfix) with ESMTP id 4RtNql2sRQz3b9P; Sat, 23 Sep 2023 22:20:19 +0000 (UTC) (envelope-from bc979@lafn.org) Authentication-Results: mx1.freebsd.org; dkim=none; spf=pass (mx1.freebsd.org: domain of bc979@lafn.org designates 47.181.130.121 as permitted sender) smtp.mailfrom=bc979@lafn.org; dmarc=none Received: from smtpclient.apple (mini [10.0.1.251]) by mail.sermon-archive.info (Postfix) with ESMTPSA id 4RtNqd0JgJz2fjSh; Sat, 23 Sep 2023 15:20:13 -0700 (PDT) Content-Type: text/plain; charset=utf-8 List-Id: Production branch of FreeBSD source code List-Archive: https://lists.freebsd.org/archives/freebsd-stable List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-stable@freebsd.org X-BeenThere: freebsd-stable@freebsd.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3731.700.6\)) Subject: Re: local-unbound stopped working after upgrade to 13.2 From: Doug Hardie In-Reply-To: <86v8c6qwhv.fsf@ltc.des.no> Date: Sat, 23 Sep 2023 15:20:02 -0700 Cc: Doug Hardie , Alain Zscheile , freebsd-stable@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: References: <1a11ae16-7425-6d5a-c864-0005343b678c@ytrizja.de> <413c02d2-89bd-96c7-5999-ee789b6ed97b@ytrizja.de> <61C47FC1-43A5-4511-A034-D89E60DFF10E@sermon-archive.info> <867comscqv.fsf@ltc.des.no> <86B400F5-01AB-4623-BAF0-6332E3B0CA2F@sermon-archive.info> <86v8c6qwhv.fsf@ltc.des.no> To: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= X-Mailer: Apple Mail (2.3731.700.6) X-Virus-Scanned: clamav-milter 1.1.2 at mail X-Virus-Status: Clean X-Spamd-Bar: / X-Spamd-Result: default: False [-0.94 / 15.00]; SUSPICIOUS_RECIPS(1.50)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.84)[-0.844]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+mx]; RCVD_NO_TLS_LAST(0.10)[]; MIME_GOOD(-0.10)[text/plain]; ONCE_RECEIVED(0.10)[]; DMARC_NA(0.00)[lafn.org: no valid DMARC record]; FROM_EQ_ENVFROM(0.00)[]; ARC_NA(0.00)[]; R_DKIM_NA(0.00)[]; ASN(0.00)[asn:5650, ipnet:47.181.128.0/18, country:US]; MIME_TRACE(0.00)[0:+]; TAGGED_RCPT(0.00)[fbsd]; MLMMJ_DEST(0.00)[freebsd-stable@freebsd.org]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; RCVD_COUNT_ONE(0.00)[1]; RCPT_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[] X-Rspamd-Queue-Id: 4RtNql2sRQz3b9P > On Sep 19, 2023, at 03:37, Dag-Erling Sm=C3=B8rgrav = wrote: >=20 > Doug Hardie writes: >> The only issue I encountered with local unbound some years ago was it >> didn't support local-zone which I needed. >=20 > It does. Just put it in a separate file in /var/unbound/conf.d/. You > may need to adjust your access control settings as well. For = instance, > I use this to allow local-unbound on my desktop computer to also serve > NATed bhyve VMs: >=20 > % cat /var/unbound/conf.d/access-control.conf > server: > interface: 127.0.0.1 > access-control: 127.0.0.0/24 allow > interface: 192.168.144.1 > access-control: 192.168.144.0/24 allow >=20 Interesting. That was not apparent when I setup DNS. I found the = unbound port to be easy to setup and maintain. Not the least of which = is that it has a consistent name. Local unbound sometimes is = local_unbound and sometime local-unbound. I found it difficult to = remember which form to use and usually had to try a couple times to get = it right. -- Doug