Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    keys.gnupg.net is obsolete

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 3 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • 4
      4o4rh
      last edited by stephenw10

      I keep getting the below error for some time now.

      Aug 19 21:50:06 	filterdns 	69857 	failed to resolve host keys.gnupg.net will retry later again.
      Aug 19 21:45:06 	filterdns 	69857 	failed to resolve host keys.gnupg.net will retry later again.
      

      I see keys.gnupg.net no longer resolves, even from a web based nslookup across different dns providers.

      I keep getting the below error for sites that seem to correlate with the time of the keys error.

      03. That’s an error. Your client does not have permission to get URL /m-einloggen.html from this server. That’s all we know
      
      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        Filterdns is the process that resolves FQDNs in firewall rules to IPs to be used in the ruleset.

        So check the rules and aliases for wherever keys.gnupg.net appears and disable or remove it.

        You can just search in the exported config file directly, that's often quicker of you have a lot of rules or aliases.

        Steve

        4 1 Reply Last reply Reply Quote 0
        • 4
          4o4rh @stephenw10
          last edited by

          @stephenw10 i am not doing anything with rules on key.gnupg.net, i assume this is what is used by the firewall to get keys, no? but according to the gnu forum this server is obsolete and no longer reachable.

          johnpozJ 1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator @4o4rh
            last edited by johnpoz

            You don't have to be doing anything with rules - just if you have an alias setup that wants to resolve that.. That is not something pfsense would be using.

            Do you have any aliases setup at all?

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.8, 24.11

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.