OPNsense Forum

English Forums => 23.7 Legacy Series => Topic started by: tillsense on July 29, 2023, 07:26:11 pm

Title: [SOLVED] Suricata stops Unbound(TLS)
Post by: tillsense on July 29, 2023, 07:26:11 pm

hi all,

suricata stops unbound after some seconds. no more dns resolution is possible. in the overview there is a "drop" as action. in the log of unbound error: 

1 error: SSL_handshake syscall: Broken pipe

2 error: outgoing tcp: bind: Can't assign requested address

workaround is to stop suricata

configured DNS over TLS (test with 23.7.r_44-amd64)

do I have to reconfigure anything?

cheers
till

Title: Re: Suricata stops Unbound(TLS)
Post by: newsense on July 30, 2023, 02:05:47 am

Did you try changing the DoT servers ? And checking the SSL and/or dns rules in Suricata ?

Title: Re: Suricata stops Unbound(TLS)
Post by: tillsense on July 31, 2023, 07:30:58 pm

hi all,

ok... was probably too far. back to productive and thus back from suricata 7 to 6 everything is back in order.

cheers
till