Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
21.7 Legacy Series
»
Slow DNS lookups on BACKUP box after changing Unbound outbound interface to LAN
« previous
next »
Print
Pages: [
1
]
Author
Topic: Slow DNS lookups on BACKUP box after changing Unbound outbound interface to LAN (Read 2090 times)
tomstephens89
Newbie
Posts: 40
Karma: 2
Slow DNS lookups on BACKUP box after changing Unbound outbound interface to LAN
«
on:
January 21, 2022, 10:08:28 pm »
Hi all,
I recently changed the outbound interface setting of the unbound resolver to one of my LAN side interfaces in order to solve the problem of DNS domain override forward requests not traversing my IPSEC tunnel to the datacenter.
Since changing unbound to use one of my LAN interfaces, DNS requests to that overridden domain now successfully use the IPSEC tunnel to a remote DNS server. However, I have just noticed that during an update of my firewall pair, the box that is currently the BACKUP node suffers extremely slow DNS resolution. I noticed this when it was looking up the package repo etc....
Any ideas why this is?
Logged
tomstephens89
Newbie
Posts: 40
Karma: 2
Re: Slow DNS lookups on BACKUP box after changing Unbound outbound interface to LAN
«
Reply #1 on:
January 23, 2022, 06:02:25 pm »
Thinking about this, could this be because the backup does not own the VIP of the LAN interface when it’s in backup state? So it’s falling back to another interface or something else?
Logged
tomstephens89
Newbie
Posts: 40
Karma: 2
Re: Slow DNS lookups on BACKUP box after changing Unbound outbound interface to LAN
«
Reply #2 on:
January 25, 2022, 09:51:35 pm »
Any thoughts on this?
An explanation as to why Unbound forwards don’t traverse an IPSEC tunnel unless the outbound interface is set to one of the LAN interfaces would help?
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
21.7 Legacy Series
»
Slow DNS lookups on BACKUP box after changing Unbound outbound interface to LAN