OPNsense 24.7.11_2-amd64
Unbound 1.22.0_1
I just found that unbound did not update its DNS blocklist: My /var/unbound/data/dnsbl.json was from January this year
root@OPNsense:/var/unbound/data # ls -l dnsbl*
-rw-r----- 1 unbound unbound 66960956 Jan 29 2024 dnsbl.json
-rw-r--r-- 1 unbound unbound 7 Dec 30 16:17 dnsbl.size
I'm not sure why and nothing in the logs points out it was even trying to. I disabled the blocklist feature and hit apply
-rw-r----- 1 root unbound 0 Dec 30 16:41 dnsbl.json
-rw-r--r-- 1 unbound unbound 7 Dec 30 16:17 dnsbl.sizeNotice now the file is owned by root.
I then re-enabled the feature, which prompted opnsense to download the blocklists without issue.
-rw-r----- 1 root unbound 63827058 Dec 30 16:42 dnsbl.json
-rw-r--r-- 1 unbound unbound 7 Dec 30 16:42 dnsbl.size
Just leaving this here since for reference, since I can't rule out that I did something wrong so that I'm the culprit :D
You may need to create a cron job to handle it
Youre right: https://docs.opnsense.org/manual/unbound.html#blocklists