Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Filterdns has stopped resolving hostnames in firewall aliases

    DHCP and DNS
    1
    2
    63
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      SteveITS Rebel Alliance
      last edited by SteveITS

      I ran into a problem today where our office pfSense did not have the correct IP for a hostname in an alias.

      Per the DNS Resolver log the last filterdns entry was March 20. There are no filterdns entries in the system log.

      The "Unable to create monitoring thread" error is NOT being logged.

      All the expected filterdns processes ARE running [per Diagnostics> System Activity], for each hostname:

      20    0   111M    20M usem     2   0:09   0.00% /usr/local/sbin/filterdns -p /var/run/filterdns.pid -i 300 -c /var/etc/filterdns.conf -d 1{example.net}
16827 root

      Before I start restarting things, any idea where to look as to why it isn't resolving hostnames after March 20?

      Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
      When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
      Upvote ๐Ÿ‘ helpful posts!

      S 1 Reply Last reply Reply Quote 0
      • S SteveITS referenced this topic
      • S
        SteveITS Rebel Alliance @SteveITS
        last edited by SteveITS

        Sounds like https://redmine.pfsense.org/issues/8758 in particular the "Is" state:

        root    62658   0.0  0.5 113276  20412  -  Is    4Feb25      1:59.64 /usr/local/sbin/filterdns -p /var/run/filterdns.pid -i 300 -c /var/etc/filterdns.conf -d 1

        Similar to that one, if I "killall filterdns" and then Status>Filter Reload, the table is immediately updated. (for convenience "pfctl -T show -t aliasname" shows this at a command prompt)

        FWIW that redmine links to https://redmine.pfsense.org/issues/9296
        ...but both are marked as closed/resolved. :(

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote ๐Ÿ‘ helpful posts!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.