Hello
Ubuntu can’t send to Unbound
Ubuntu 20.04
unbound Version 1.9.4
Following steps for Single Machine
https://unbound.docs.nlnetlabs.nl/en/latest/use-cases/home-resolver.html#setting-up-for-a-single-machine
systemctl status unbound
● unbound.service - Unbound DNS server
Loaded: loaded (/lib/systemd/system/unbound.service; enabled; vendor preset: enabled)
Active: active (running) since Thu 2022-05-26 09:25:41 PDT; 16s ago
Docs: man:unbound(8)
Process: 15561 ExecStartPre=/usr/lib/unbound/package-helper chroot_setup (code=exited, status=0/SUCCESS)
Process: 15564 ExecStartPre=/usr/lib/unbound/package-helper root_trust_anchor_update (code=exited, status=0/SUCCESS)
Main PID: 15569 (unbound)
Tasks: 1 (limit: 9415)
Memory: 6.1M
CGroup: /system.slice/unbound.service
└─15569 /usr/sbin/unbound -d
May 26 09:25:40 ubuntu systemd[1]: Starting Unbound DNS server…
May 26 09:25:40 ubuntu package-helper[15567]: /var/lib/unbound/root.key has content
May 26 09:25:40 ubuntu package-helper[15567]: success: the anchor is ok
May 26 09:25:41 ubuntu unbound[15569]: [15569:0] notice: init module 0: subnet
May 26 09:25:41 ubuntu unbound[15569]: [15569:0] notice: init module 1: validator
May 26 09:25:41 ubuntu unbound[15569]: [15569:0] notice: init module 2: iterator
May 26 09:25:41 ubuntu unbound[15569]: [15569:0] info: start of service (unbound 1.9.4).
May 26 09:25:41 ubuntu systemd[1]: Started Unbound DNS server.
Before resolved.conf change
dig example.com @127.0.0.1
; <<>> DiG 9.16.1-Ubuntu <<>> example.com @127.0.0.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 50659
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;example.com. IN A
;; ANSWER SECTION:
example.com. 86400 IN A 93.184.216.34
;; Query time: 356 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Thu May 26 09:23:56 PDT 2022
;; MSG SIZE rcvd: 56
dig example.com
; <<>> DiG 9.16.1-Ubuntu <<>> example.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12701
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;example.com. IN A
;; ANSWER SECTION:
example.com. 5 IN A 93.184.216.34
;; Query time: 24 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Thu May 26 09:20:57 PDT 2022
;; MSG SIZE rcvd: 56
sudo gedit /etc/systemd/resolved.conf
[Resolve]
DNS=127.0.0.1
#DNS=
#FallbackDNS=
#Domains=
#LLMNR=no
#MulticastDNS=no
#DNSSEC=no
#DNSOverTLS=no
#Cache=no-negative
DNSStubListener=no
#DNSStubListener=yes
#ReadEtcHosts=yes
systemctl restart systemd-resolved
systemctl status unbound
● unbound.service - Unbound DNS server
Loaded: loaded (/lib/systemd/system/unbound.service; enabled; vendor preset: enabled)
Active: active (running) since Thu 2022-05-26 09:25:41 PDT; 5min ago
Docs: man:unbound(8)
Process: 15561 ExecStartPre=/usr/lib/unbound/package-helper chroot_setup (code=exited, status=0/SUCCESS)
Process: 15564 ExecStartPre=/usr/lib/unbound/package-helper root_trust_anchor_update (code=exited, status=0/SUCCESS)
Main PID: 15569 (unbound)
Tasks: 1 (limit: 9415)
Memory: 6.4M
CGroup: /system.slice/unbound.service
└─15569 /usr/sbin/unbound -d
May 26 09:25:40 ubuntu systemd[1]: Starting Unbound DNS server…
May 26 09:25:40 ubuntu package-helper[15567]: /var/lib/unbound/root.key has content
May 26 09:25:40 ubuntu package-helper[15567]: success: the anchor is ok
May 26 09:25:41 ubuntu unbound[15569]: [15569:0] notice: init module 0: subnet
May 26 09:25:41 ubuntu unbound[15569]: [15569:0] notice: init module 1: validator
May 26 09:25:41 ubuntu unbound[15569]: [15569:0] notice: init module 2: iterator
May 26 09:25:41 ubuntu unbound[15569]: [15569:0] info: start of service (unbound 1.9.4).
May 26 09:25:41 ubuntu systemd[1]: Started Unbound DNS server.
May 26 09:26:55 ubuntu unbound[15569]: [15569:0] info: generate keytag query _ta-4f66. NULL IN
dig example.com
; <<>> DiG 9.16.1-Ubuntu <<>> example.com
;; global options: +cmd
;; connection timed out; no servers could be reached
Thanks