Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Domain overrides frequently returning NXDomain

    Scheduled Pinned Locked Moved DHCP and DNS
    3 Posts 2 Posters 394 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      masterzen77
      last edited by

      Hi,

      We have an HA setup with an ipsec tunnel to the main site. We need to resolve a specific domain with the DNS servers running at the main site. For this we added a domain override pointing to one of the DNS server there.
      In our LAN this domain is resolvable, but after a few moments (sometimes a few seconds), the resolution returns NXDomain error.
      It seems unbound negatively cached the forward, because it works again after an unbound-control flush_negative.

      I wasn't able to spot anything in the resolver.log, and I fail to see how to troubleshoot the problem.

      Any idea what could cause this issue?

      1 Reply Last reply Reply Quote 0
      • GertjanG
        Gertjan
        last edited by

        Unbound is the resolver, running on pfSense.
        That's the resolver being used, right ?

        The unbound / resolver was restarting when you get NXDomain ?

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        1 Reply Last reply Reply Quote 0
        • M
          masterzen77
          last edited by

          Yes, it is unbound. The pfsense acts as a resolver for the LAN, and should forward requests from the domain override to the remote server.

          I don't think unbound was restarting. The option that makes DHCP lease store client names in the resolver has been disabled a long time ago.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.