Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    "New" DNS lookups are often failing once for me ??!

    Scheduled Pinned Locked Moved
    DHCP and DNS
    4
    5
    839
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • MrPeteM
      MrPete
      last edited by

      I'm seeing the following on multiple endpoints.
      I am NOT seeing it in my crucial email server.
      Thus, this could be some weird interaction of Windows 10 and the DNS Resolver in pfSense...

      Reasonably often, a local windows app (browser or otherwise) will tell me that a domain could NOT be found. Yet when I tell it to retry, all is well.

      I checked my /var/unbound/access_lists.conf and it is fine.

      I assume I have something misconfigured.

      Is there some kind of parameter or ??? I need to check?

      (Note: I've now enabled server: log-servfail: yes in case that will reveal anything...)

      S johnpozJ 2 Replies Last reply Reply Quote 0
      • D
        drohack
        last edited by

        What are your pfSense System -> General Settings -> DNS Server Settings?
        You might need to disable "DNS Override" and "Use Local DNS (127.0.0.1), fall back on remote DNS (default)".

        1 Reply Last reply Reply Quote 0
        • S
          SteveITS Rebel Alliance @MrPete
          last edited by

          @mrpete if you are forwarding, disable DNSSEC. Possibly, DNS over TLS, some have said that helps.

          Is unbound restarting often? Consider disabling DHCP registration.

          Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
          When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
          Upvote 👍 helpful posts!

          1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator @MrPete
            last edited by johnpoz

            @mrpete said in "New" DNS lookups are often failing once for me ??!:

            I assume I have something misconfigured.

            Might just be some delay in getting an answer and not really a misconfiguration - some details of your unbound config, you say this happens somewhat regular? Is it specific domains your having trouble with that you have noticed?

            Your machine your having issues with - its only pointing to pfsense for dns? You don't have multiple dns setup on it? Its not doing or attempting to do doh? etc..

            if you are having issues with a specific domain(s).. An example of these could be helpful in tracking down what might be going on.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.7.2, 24.11

            1 Reply Last reply Reply Quote 0
            • MrPeteM
              MrPete
              last edited by

              Sorry for the delays... family RL kicked in.

              Lots of helpful suggestions... looking into it! THANKS

              1 Reply Last reply Reply Quote 0
              • First post
                Last post