Print Page - SSL Handshake errors between unbound and DNS overTLS enabled forwarders

Title: SSL Handshake errors between unbound and DNS overTLS enabled forwarders
Post by: tuatara on July 15, 2024, 09:35:02 AM

When I searched for this, In this forum I found the following post:

Quote[SOLVED] ssl handshake errors between unbound and DNS over TLS enabled forwarders
« Reply #3 on: March 08, 2019, 10:24:43 pm »
I found a solution for my issue. I added following line to a server block and afterwards the name resolution works.
tls-cert-bundle: /etc/ssl/cert.pem

Is there someone who can explain, where exactly I need to place the line above, since I don't understand what was meant with:
"I added following line to a server block" where exactly is that?

Thanks in advance

Title: Re: SSL Handshake errors between unbound and DNS overTLS enabled forwarders
Post by: Patrick M. Hausen on July 15, 2024, 09:36:46 AM

https://docs.opnsense.org/manual/unbound.html#advanced-configurations

Title: Re: SSL Handshake errors between unbound and DNS overTLS enabled forwarders
Post by: tuatara on July 15, 2024, 12:11:22 PM

Thanks Patrick,

I've created an extra .conf file under: /usr/local/etc/unbound.opnsense.d/
and added the line in there, that solved the issue!

Tuatara

OPNsense Forum

Archive => 24.1, 24.4 Legacy Series => Topic started by: tuatara on July 15, 2024, 09:35:02 AM