DNS over TLS Question

Started by spetrillo, May 23, 2020, 03:12:11 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
May 23, 2020, 03:12:11 AM
I am using the miscellaneous section of Unbound to specify my TLS servers. When I do this I get a msg in the Unbound log that tells me there are duplicate forwarding zones. Is this ok or is it an error. I specified both Cloudflare servers, so I know they both work.
May 23, 2020, 07:03:40 AM #1
Then you also have one in custum settings?
May 23, 2020, 07:24:15 AM #2
I do not...I only have my Plex piece there.
May 23, 2020, 08:34:59 AM #3
This can also be set in misc section
May 23, 2020, 03:53:56 PM #4
Ok so i removed everything from custom and have now added plex.direct into misc, as shown in the attached. All good?
May 23, 2020, 05:06:30 PM #5
But you error is still there?
May 23, 2020, 05:39:14 PM #6
Yes I still have the duplicate forward zone msg in the log.
May 23, 2020, 09:01:30 PM #7
Can you check /var/unbound/unbound.conf?
May 24, 2020, 06:08:15 PM #8
So when checking the file I find the following in there:

# Forwarding
forward-zone:
    name: "."
    forward-addr: 1.1.1.1
    forward-addr: 1.0.0.1

This corresponds to my config but is missing the TLS designation? I would have expected to see the @853 also.

Steve
May 24, 2020, 06:48:16 PM #9
This means your Unbound is using your system dns (transparent Mode), which cant work
May 24, 2020, 07:12:02 PM #10
Hmm...how did this happen and what do I need to change? Under System/Settings I am specifying 1.1.1.1 and 1.0.0.1.
May 25, 2020, 07:18:58 AM #11
I'm quite sure you have "DNS Query Forwarding" in Unbound : General enabled. This means Unbound forwards every request to the systems DNS servers. Just disable this checkbox.
May 25, 2020, 05:01:38 PM #12
Thanks for that...yes I had it enabled. It is now unchecked and the duplicate forwarding log msg is now gone.
Print
Go Up Pages1
User actions