BIND on pfSense 2.3.2
-
hi everyone
anyone can tell me why my bind service cannot start
here is the log
Dec 30 15:21:09 named 59211 starting BIND 9.10.4-P2 <id:7658a94>-c /etc/namedb/named.conf -u bind -t /cf/named/ Dec 30 15:21:09 named 59211 running on FreeBSD amd64 10.3-RELEASE-p5 FreeBSD 10.3-RELEASE-p5 #0 7307492(RELENG_2_3_2): Tue Jul 19 13:29:35 CDT 2016 root@ce23-amd64-builder:/builder/pfsense-232/tmp/obj/builder/pfsense-232/tmp/FreeBSD-src/sys/pfSense Dec 30 15:21:09 named 59211 built with '--localstatedir=/var' '--disable-linux-caps' '--disable-symtable' '--with-randomdev=/dev/random' '--with-libxml2=/usr/local' '--with-readline=-ledit' '--with-dlopen=yes' '--sysconfdir=/usr/local/etc/namedb' '--disable-fetchlimit' '--disable-filter-aaaa' '--disable-fixed-rrset' '--without-geoip' '--with-idn=/usr/local' '--enable-ipv6' '--disable-largefile' '--disable-newstats' '--without-python' '--disable-querytrace' '--disable-rpz-nsdname' '--disable-rpz-nsip' '--enable-rrl' 'STD_CDEFINES=-DDIG_SIGCHASE=1' '--without-gssapi' '--with-openssl=/usr' '--disable-native-pkcs11' '--with-dlz-filesystem=yes' '--without-gost' '--enable-threads' '--prefix=/usr/local' '--mandir=/usr/local/man' '--infodir=/usr/local/info/' '--build=amd64-portbld-freebsd10.3' 'build_alias=amd64-portbld-freebsd10.3' 'CC=cc' 'CFLAGS=-O2 -pipe -isystem /usr/local/include -DLIBICONV_PLUG -fstack-protector -fno-strict-aliasing' 'LDFLAGS= -L/usr/local/lib -fstack-protector' 'LIBS=' 'CPPFLAGS=-isyste Dec 30 15:21:09 named 59211 ---------------------------------------------------- Dec 30 15:21:09 named 59211 BIND 9 is maintained by Internet Systems Consortium, Dec 30 15:21:09 named 59211 Inc. (ISC), a non-profit 501(c)(3) public-benefit Dec 30 15:21:09 named 59211 corporation. Support and training for BIND 9 are Dec 30 15:21:09 named 59211 available at https://www.isc.org/support Dec 30 15:21:09 named 59211 ---------------------------------------------------- Dec 30 15:21:09 named 59211 found 4 CPUs, using 4 worker threads Dec 30 15:21:09 named 59211 using 3 UDP listeners per interface Dec 30 15:21:09 named 59211 using up to 4096 sockets Dec 30 15:21:09 named 59211 loading configuration from '/etc/namedb/named.conf' Dec 30 15:21:09 named 59211 using default UDP/IPv4 port range: [49152, 65535] Dec 30 15:21:09 named 59211 using default UDP/IPv6 port range: [49152, 65535] Dec 30 15:21:09 named 59211 listening on IPv6 interfaces, port 53 Dec 30 15:21:09 named 59211 could not listen on UDP socket: address in use Dec 30 15:21:09 named 59211 listening on all IPv6 interfaces failed Dec 30 15:21:09 named 59211 not listening on any interfaces Dec 30 15:21:09 named 59211 generating session key for dynamic DNS Dec 30 15:21:09 named 59211 sizing zone task pool based on 0 zones Dec 30 15:21:09 named 59211 set up managed keys zone for view _default, file 'managed-keys.bind' Dec 30 15:21:09 named 59211 automatic empty zone: 10.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 16.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 17.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 18.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 19.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 20.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 21.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 22.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 23.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 24.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 25.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 26.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 27.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 28.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 29.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 30.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 31.172.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 168.192.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 64.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 65.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 66.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 67.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 68.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 69.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 70.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 71.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 72.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 73.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 74.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 75.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 76.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 77.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 78.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 79.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 80.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 81.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 82.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 83.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 84.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 85.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 86.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 87.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 88.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 89.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 90.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 91.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 92.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 93.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 94.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 95.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 96.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 97.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 98.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 99.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 100.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 101.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 102.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 103.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 104.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 105.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 106.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 107.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 108.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 109.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 110.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 111.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 112.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 113.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 114.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 115.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 116.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 117.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 118.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 119.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 120.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 121.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 122.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 123.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 124.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 125.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 126.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 127.100.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 0.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 127.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 254.169.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 2.0.192.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 100.51.198.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 113.0.203.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 255.255.255.255.IN-ADDR.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: D.F.IP6.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 8.E.F.IP6.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 9.E.F.IP6.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: A.E.F.IP6.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: B.E.F.IP6.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA Dec 30 15:21:09 named 59211 automatic empty zone: EMPTY.AS112.ARPA Dec 30 15:21:09 named 59211 /etc/namedb/named.conf:10: couldn't add command channel 127.0.0.1#953: address in use Jan 12 07:32:07 named 67292 starting BIND 9.10.4-P2 <id:7658a94>-4 -c /etc/namedb/named.conf -u bind -t /cf/named/ Jan 12 07:32:07 named 67292 running on FreeBSD amd64 10.3-RELEASE-p5 FreeBSD 10.3-RELEASE-p5 #0 7307492(RELENG_2_3_2): Tue Jul 19 13:29:35 CDT 2016 root@ce23-amd64-builder:/builder/pfsense-232/tmp/obj/builder/pfsense-232/tmp/FreeBSD-src/sys/pfSense Jan 12 07:32:07 named 67292 built with '--localstatedir=/var' '--disable-linux-caps' '--disable-symtable' '--with-randomdev=/dev/random' '--with-libxml2=/usr/local' '--with-readline=-ledit' '--with-dlopen=yes' '--sysconfdir=/usr/local/etc/namedb' '--disable-fetchlimit' '--disable-filter-aaaa' '--disable-fixed-rrset' '--without-geoip' '--with-idn=/usr/local' '--enable-ipv6' '--disable-largefile' '--disable-newstats' '--without-python' '--disable-querytrace' '--disable-rpz-nsdname' '--disable-rpz-nsip' '--enable-rrl' 'STD_CDEFINES=-DDIG_SIGCHASE=1' '--without-gssapi' '--with-openssl=/usr' '--disable-native-pkcs11' '--with-dlz-filesystem=yes' '--without-gost' '--enable-threads' '--prefix=/usr/local' '--mandir=/usr/local/man' '--infodir=/usr/local/info/' '--build=amd64-portbld-freebsd10.3' 'build_alias=amd64-portbld-freebsd10.3' 'CC=cc' 'CFLAGS=-O2 -pipe -isystem /usr/local/include -DLIBICONV_PLUG -fstack-protector -fno-strict-aliasing' 'LDFLAGS= -L/usr/local/lib -fstack-protector' 'LIBS=' 'CPPFLAGS=-isyste Jan 12 07:32:07 named 67292 ---------------------------------------------------- Jan 12 07:32:07 named 67292 BIND 9 is maintained by Internet Systems Consortium, Jan 12 07:32:07 named 67292 Inc. (ISC), a non-profit 501(c)(3) public-benefit Jan 12 07:32:07 named 67292 corporation. Support and training for BIND 9 are Jan 12 07:32:07 named 67292 available at https://www.isc.org/support Jan 12 07:32:07 named 67292 ---------------------------------------------------- Jan 12 07:32:07 named 67292 found 4 CPUs, using 4 worker threads Jan 12 07:32:07 named 67292 using 3 UDP listeners per interface Jan 12 07:32:07 named 67292 using up to 4096 sockets Jan 12 07:32:07 named 67292 loading configuration from '/etc/namedb/named.conf' Jan 12 07:32:07 named 67292 /etc/namedb/named.conf:44: expected IP match list element near ';' Jan 12 07:32:07 named 67292 loading configuration: unexpected token Jan 12 07:32:07 named 67292 exiting (due to fatal error)</id:7658a94></id:7658a94> -
no one have any solution to my problem
-
/etc/namedb/named.conf:44: expected IP match list element near ';'So what's on line 44?
-
hello thank you for trying to help me
I tried to open this file but said Fire doesn't exist /etc/namedb/named.conf nor the directory /etc/namedb
any idea
Thank you
/etc/namedb/named.conf:44: expected IP match list element near ';'So what's on line 44?
-
You need to start with the chroot, try
/cf/named/etc/namedb/named.conf -
hello
I am so sorry buy I am not familiar with chroot can you help me
Thank you
You need to start with the chroot, try
/cf/named/etc/namedb/named.conf -
Dunno what's the trouble now, just use the path above.
-
#Bind pfsense configuration #Do not edit this file!!! key "rndc-key" { algorithm hmac-md5; secret "secret"; }; controls { inet 127.0.0.1 port 953 allow { 127.0.0.1; } keys { "rndc-key"; }; }; options { directory "/etc/namedb"; pid-file "/var/run/named/pid"; statistics-file "/var/log/named.stats"; max-cache-size 256M; rate-limit { responses-per-second 15; log-only no; }; listen-on { IP-LAN; localhost; }; version none; }; logging { channel custom { syslog daemon; print-time no; print-severity yes; print-category yes; severity error; }; category default { custom; }; }; acl "Trusted-clients" { IP-LAN; ; }; acl "Transfer-to-ns2" { IP-LAN-NS2; }; view "local.local" { recursion yes; match-clients { Trusted-clients; }; allow-recursion { Trusted-clients; }; zone "local.local" { type master; file "/etc/namedb/master/homelab-us.local/local.local.DB"; allow-query { Trusted-clients; }; allow-transfer { Transfer-to-ns2; }; allow-update { Trusted-clients; }; }; zone "1.168.192.in-addr.arpa" { type master; file "/etc/namedb/master/local.local/1.168.192.DB"; allow-query { Trusted-clients; }; allow-transfer { Transfer-to-ns2; }; allow-update { Trusted-clients; }; }; zone "." { type hint; file "/etc/namedb/named.root"; }; };Thats the code on this path
Dunno what's the trouble now, just use the path above.
-
Looks like you have some empty line/entry in the trusted clients ACL.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.