I'm using the bind plugin for DNSBL purposes, and I'm seeing lots of log messages like these:
'lame-servers: info: host unreachable resolving '_.api.sc-gw.com/A/IN': 2600:9000:5305:a600::1#53'
This happens most probably because I don't have IPV6 connectivity. Would it be possible to disable IPV6 in named or system-wide to get rid of those?
Better way would be to enable IPv6.
And no, it should not be possible since it's 2019 and IPv6 become more and more default.
I'd love to be able to enable IPV6 but my ISP doesn't offer it, unfortunately
As far as I can tell, the plugin has no option to disable IPv6.
Maybe it is enough if you remove the IPv6 address binding if possible.
You should write your provider to support IPv6.
To run named in IPV4-only mode, I changed
named_flags=${named_flags:-""}
to
named_flags=${named_flags:-"-4"}
in /usr/local/etc/rc.d/named
This works, however it wil probably be overwritten during upgrades. It also gets flagged by the security audit.
Is there a proper way to make this permanent?
Hi,
can you verify if it is a percident change that is still there after reboot?
Not sure if it will be overwritten by configd on next boot.
Can you open a feature request in GitHub and link this post, it's an easy task :)
I'm not familiar with GitHub so I hope I didn't make any mistakes, but here it is:
https://github.com/opnsense/plugins/issues/1532
Thanks in advance for taking a look at it!