keys.gnupg.net is obsolete
-
I keep getting the below error for some time now.
Aug 19 21:50:06 filterdns 69857 failed to resolve host keys.gnupg.net will retry later again. Aug 19 21:45:06 filterdns 69857 failed to resolve host keys.gnupg.net will retry later again.
I see keys.gnupg.net no longer resolves, even from a web based nslookup across different dns providers.
I keep getting the below error for sites that seem to correlate with the time of the keys error.
03. That’s an error. Your client does not have permission to get URL /m-einloggen.html from this server. That’s all we know
-
Filterdns is the process that resolves FQDNs in firewall rules to IPs to be used in the ruleset.
So check the rules and aliases for wherever keys.gnupg.net appears and disable or remove it.
You can just search in the exported config file directly, that's often quicker of you have a lot of rules or aliases.
Steve
-
@stephenw10 i am not doing anything with rules on key.gnupg.net, i assume this is what is used by the firewall to get keys, no? but according to the gnu forum this server is obsolete and no longer reachable.
-
You don't have to be doing anything with rules - just if you have an alias setup that wants to resolve that.. That is not something pfsense would be using.
Do you have any aliases setup at all?