Unbound

Running nsd and unbound on OpenBSD 5.7

       443 words, 3 minutes

I started replacing Bind with nsd/unbound on previous OpenBSD release. Now it’s time to update to OpenBSD 5.7 and ensure it still works.

Continue reading...


Solve unbound error about root.key

       103 words, 1 minutes

I wrote about running unbound and nsd on OpenBSD 5.6 here . The other day, the VM that runs those went to DDB. On reboot, I got the following error message : unbound: [16897:0] error: ldns error while converting string to RR at15: Syntax error, could not parse the RR's type: spamd: \\[priv\\] unbound: [16897:0] error: failed to load trust anchor from /db/root.key at line 1, skipping unbound: [16897:0] error: failed to read /db/root.key unbound: [16897:0] error: error reading auto-trust-anchor-file: /var/unbound/db/root.key This means “root.key” went broken. To rebuild it, simple run those:

Continue reading...


From Bind to nsd and unbound on OpenBSD 5.6

       652 words, 4 minutes

I’ve been using Bind as a primary, slave or cache name server for all my IT life. But it seems Bind is being kicked out of OpenBSD. So far so good, I’m gonna use what’s provided by my favorite OS to do the job. Here’s how to use nsd and unbound daemons to serve as an internal authoritative DNS nameserver and DNS resolver. Both will be running on the same machine.

Continue reading...


2 / 2