Maintained by: NLnet Labs

unbound fetches DNS record from nsd but does not return it to client

Edgar Pettijohn
Sat Aug 1 04:19:55 CEST 2015


First I'm not an expert but, I think you need to change access-control 
"allow" to "allow_snoop".  However, if its just your local network why 
not let unbound handle it.

(something similar to below)
local-zone: "home." static
         local-data: "datanet.home. IN A 192.168.1.61"
         local-zone: "1.168.192.in-addr.arpa." static
         local-data-ptr: "192.168.1.61 datanet.home"


>
> Here is my entire unbound.conf.  I don't think nsd.conf is relevant 
> since that clearly is working.
>
>     server:
>       interface: 127.0.0.1
>       interface: 192.168.1.50
>       use-syslog: yes
>       username: "unbound"
>       directory: "/etc/unbound"
>       trust-anchor-file: trusted-key.key
>       access-control: 192.168.1.0/24 allow
>       #verbosity: 4
>       local-zone: "1.168.192.in-addr.arpa" nodefault
>       do-not-query-localhost: no
>     remote-control:
>       control-enable: yes
>       control-interface: 127.0.0.1
>       control-port: 8953
>       server-key-file: "/etc/unbound/unbound_server.key"
>       server-cert-file: "/etc/unbound/unbound_server.pem"
>       control-key-file: "/etc/unbound/unbound_control.key"
>       control-cert-file: "/etc/unbound/unbound_control.pem"
>
>     stub-zone:
>       name: "datanet.home"
>       stub-addr: 192.168.1.50 at 53530
>     stub-zone:
>       name: "1.168.192.in-addr.arpa"
>       stub-addr: 192.168.1.50 at 53530
>
>
> Any pointers would be awesome. This is driving me nuts.  Thanks!
>