1
17.7 Legacy Series / Strange issue with DNS (resolving fails after 30~60 mins uptime)
« on: August 02, 2017, 10:40:00 pm »
Hi All,
First post here, so please be gentle
Have been running OPNsense for a year now. Very pleased with it and all of the developments going on to further improve and enhance.
An issue I'm running into is with DNS resolving. I'm primarily still using the Dnsmasq DNS service, but I've also tried running Unbound DNS instead, which has the same issue.
What happens is that all is fine and dandy when booting up. And all runs as should upto 30 to 60 minutes.
After that, DNS resolving stops working on all interfaces (I have three interfaces setup for WAN LAN and DMZ).
Strange thing is that I can still make a connection to the DNS port (nc from a client machine returns a successful connection), but trying to resolve an address results in a timeout.. even for locally defined/overridden records.
Running a resolve from the interfaces diag section in the OPNsense webadmin interface also then fails.
Restarting the DNS service does not fix it... restarting the box does.
Pinging from DMZ to LAN (from server/client devices) still works (I have allowed ICMP trafic in the rules to troubleshoot)... so network flow seems OK.
Have looked in different logs... but have not found any errors or messages there that are related.
Also, the management interface shows all services as running.
How can I best troubleshoot this?
Thanks,
Willem
First post here, so please be gentle
Have been running OPNsense for a year now. Very pleased with it and all of the developments going on to further improve and enhance.
An issue I'm running into is with DNS resolving. I'm primarily still using the Dnsmasq DNS service, but I've also tried running Unbound DNS instead, which has the same issue.
What happens is that all is fine and dandy when booting up. And all runs as should upto 30 to 60 minutes.
After that, DNS resolving stops working on all interfaces (I have three interfaces setup for WAN LAN and DMZ).
Strange thing is that I can still make a connection to the DNS port (nc from a client machine returns a successful connection), but trying to resolve an address results in a timeout.. even for locally defined/overridden records.
Running a resolve from the interfaces diag section in the OPNsense webadmin interface also then fails.
Restarting the DNS service does not fix it... restarting the box does.
Pinging from DMZ to LAN (from server/client devices) still works (I have allowed ICMP trafic in the rules to troubleshoot)... so network flow seems OK.
Have looked in different logs... but have not found any errors or messages there that are related.
Also, the management interface shows all services as running.
How can I best troubleshoot this?
Thanks,
Willem