Unbound - corrupt root.key
-
why is everything flagged as spam?
-
Hello,
Sorry about the first message. I was trying to see if I could post something WITHOUT it being flagged as spam...
I have a strange issue with Unbound. Every time it restarts, I see the following in the logs: /status_services.php: Unbound /var/unbound/root.key file is corrupt, removing and recreating.
I've tried recreating the key using the following commands:
rm /var/unbound/root.key
unbound-anchor -4 -a /var/unbound/root.key
chown unbound /var/unbound/root.keyI get no errors. But if I restart Unbound, I still see: /status_services.php: Unbound /var/unbound/root.key file is corrupt, removing and recreating. in the logs...
Also, it takes about a minute to restart. No clue if these two issues are related. But any help anyone could provide would be much appreciated.
DNS resolution works just fine despite these issues. I'm at a loss.
Cheers
-
@5055 I have same issue. Did you fix this?
-
@munchie
The OP was using earlier pfSense version.
What is your version ?
What does your /var/unbound/root.key contain ?During boot, look at the the console, any non normal messages ?
Btw : this root.key is the DNSSEC root key. It can change upstream, that that would be extremely rare.
It is updated regularly, and the time stamps in the file reflect this.
pfSense should use the exact time. This is mandatory, for DNSSEC to work.