Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[DOC] DNS Does not work when local_unbound service is enabled #708

Open
FranzGames opened this issue Jul 3, 2024 · 2 comments
Open

[DOC] DNS Does not work when local_unbound service is enabled #708

FranzGames opened this issue Jul 3, 2024 · 2 comments
Labels
documentation Related to documentation

Comments

@FranzGames
Copy link

[MANDATORY] Describe the bug [MANDATORY]
If you enable the local_unbound service is enabled on the host. When a jail is created, the local_unbound service is not enabled by default so it is unable to resolve any DNS

[MANDATORY] Bastille and FreeBSD version (paste bastille -v && freebsd-version -kru output)

bastille -v && freebsd-version -kru

0.10.20231125
14.1-RELEASE
14.1-RELEASE
14.1-RELEASE-p2

[MANDATORY] How did you install bastille? (port/pkg/git)
pkg

[optional] Steps to reproduce?
Install FreeBSD 14.1 with local_unbound service enabled.
Install Bastille
Configure Bastille as per the "Getting Started" steps
Type:
bastille bootstrap 14.1-RELEASE update
bastille create alcatraz 14.1-RELEASE 10.17.89.50/24
bastille pkg alcatraz install -y htop

The last step will fail with:

Bootstrapping pkg from pkg+https://pkg.FreeBSD.org/FreeBSD:14:amd64/quarterly, please wait...
pkg: Error fetching https://pkg.FreeBSD.org/FreeBSD:14:amd64/quarterly/Latest/pkg.txz: Host does not resolve
Address resolution failed for https://pkg.FreeBSD.org/FreeBSD:14:amd64/quarterly.
Consider changing PACKAGESITE.

Failed to apply on some jails, please check logs

[optional] Expected behavior
htop package to be installed.

[optional] Screenshots
If applicable, add screenshots to help explain your problem.

[optional] Additional context
Add any other context about the problem here.
@FranzGames FranzGames added the bug Something isn't working label Jul 3, 2024
@FranzGames
Copy link
Author

Work on resolving this and the solution that I came up with was to re-configure the local_unbound service. The configuration added was:

server:
interface: 0.0.0.0
access-control: 192.168.0.0/16 allow
access-control: 10.17.90.0/24 allow

and I modified the /etc/resolv.conf file in the jail to point the nameserver to the servers IP address instead of 127.0.0.1

Not sure, if this is the correct solution. But it is a solution.

It is possible that it is something that just requires documentation about using jails and the local_unbound server.

@yaazkal yaazkal added documentation Related to documentation and removed bug Something isn't working labels Nov 25, 2024
@yaazkal yaazkal changed the title [BUG] DNS Does not work when local_unbound service is enabled [DOC] DNS Does not work when local_unbound service is enabled Nov 25, 2024
@yaazkal
Copy link
Collaborator

yaazkal commented Nov 25, 2024

Changing labels for "documentation" since it's not a bug of Bastille, it's a user configuration topic. We can document this in order to help those users that are using local_unbound.

This is related to issue #703

I will left this open in order to have it on the radar.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
documentation Related to documentation
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@yaazkal @FranzGames