Generating unbound-anchor 'root.key'.....
/opt/sbin/unbound-anchor: error while loading shared libraries: /opt/lib/libcrypto.so.1.1: invalid ELF header
tOmsK@RT-AC68U-4690:/tmp/home/root# opkg files libopenssl
Package libopenssl (1.1.1d-2) is installed on root and has the following files:
/opt/lib/libcrypto.so.1.1
/opt/lib/libssl.so.1.1
FIX: Checking 'unbound.conf' for duplicate statements reports false-positives i.e. 'blank' lines not ignored similar to 'empty' lines
FIX: 'vpn debug show' now filters out irrelevant inbound DNS requests from the unbound related Syslog scan report
ADD: 'bind'/'vpn' command descriptions to '3 Advanced Tools' menu.
ADD: 'bind [debug [show]]' options (same as 'vpn debug show' command)
CHANGE: '?' now reports cache used percentages
e = Exit Script [?]
A:Option ==> ?
<snip>
unbound Memory/Cache:
key-cache-size:' 8388608 (8.00 MB)
msg-cache-size:' 8388608 (8.00 MB) 5% used 479691 (468.45 KB)
rrset-cache-size:' 16777216 (16.00 MB) 8% used 1439632 (1.37 MB)
Would the setting 'Accept DNS Configuration' of the VPN client (used by unbound) have any weight in the 'mission accomplished' statement?Sounds right to me. Send dns queries out the VPN tunnel and they get received at the authoritative server from the VPN provider’s IP range. Mission accomplished.
unbound[6269:0] fatal error: Could not read config file: /unbound.conf. Maybe try unbound -dd, it stays on the commandline to see more errors, or unbound-checkconf
Can you read the file? or did you try the 'debug' command?@juched and @Martineau , I tried enabling DNS firewall twice now and i get a fatal error and unbound stops working. Don't know what i'm doing wrong.
Code:unbound[6269:0] fatal error: Could not read config file: /unbound.conf. Maybe try unbound -dd, it stays on the commandline to see more errors, or unbound-checkconf
e = Exit Script [?]
A:Option ==> i config
Can you read the file? or did you try the 'debug' command?
You could try refreshing just 'unbound.conf'
e.g. in 'Advanced' menu mode
then reapply your options.Code:e = Exit Script [?] A:Option ==> i config
Adding 'include: "/opt/share/unbound/configs/unbound.conf.addgui" '/opt/var/lib/unbound/unbound.conf'
/opt/var/lib/unbound/unbound.conf:202: error: cannot open include file '/opt/share/unbound/configs/unbound.conf.addgui': No such file or directory
read /opt/var/lib/unbound/unbound.conf failed: 1 errors in configuration file
***ERROR requested re(Start) of unbound ABORTed! - use option 'vx' to correct 'unbound.conf' or 'rl' to load a valid configuration file
Sorry, can you update to the HotfixCode:Adding 'include: "/opt/share/unbound/configs/unbound.conf.addgui" '/opt/var/lib/unbound/unbound.conf' /opt/var/lib/unbound/unbound.conf:202: error: cannot open include file '/opt/share/unbound/configs/unbound.conf.addgui': No such file or directory read /opt/var/lib/unbound/unbound.conf failed: 1 errors in configuration file ***ERROR requested re(Start) of unbound ABORTed! - use option 'vx' to correct 'unbound.conf' or 'rl' to load a valid configuration file
A:Option ==> uf
Forced Update
unbound_manager.sh downloaded successfully
unbound Manager UPDATE Complete! 24bb61c37d65f575969c0ad64c3013a6
e = Exit Script [?]
A:Option ==> i config
unbound-checkconf: no errors in /opt/var/lib/unbound/unbound.conf
Removing 'include: "/opt/share/unbound/configs/unbound.conf.add" '/opt/var/lib/unbound/unbound.conf'
sed: invalid option -- 1
BusyBox v1.25.1 (2020-04-25 22:25:48 EDT) multi-call binary.
Usage: sed [-inrE] [-f FILE]... [-e CMD]... [FILE]...
or: sed [-inrE] CMD [FILE]...
-e CMD Add CMD to sed commands to be executed
-f FILE Add FILE contents to sed commands to be executed
-i[SFX] Edit files in-place (otherwise sends to stdout)
Optionally back files up, appending SFX
-n Suppress automatic printing of pattern space
-r,-E Use extended regex syntax
If no -e or -f, the first non-option argument is the sed command string.
Remaining arguments are input files (stdin if none).
Adding 'include: "/opt/share/unbound/configs/unbound.conf.addgui" '/opt/var/lib/unbound/unbound.conf'
Starting unbound... done.
Checking status, please wait..... unbound OK
Bingo. That forced update made it work. Thanks Martineau...Sorry, can you update to the Hotfix
then retryCode:A:Option ==> uf Forced Update unbound_manager.sh downloaded successfully unbound Manager UPDATE Complete! 24bb61c37d65f575969c0ad64c3013a6
Code:e = Exit Script [?] A:Option ==> i config
Not for Unbound, since we’re just telling it what interface to use on the router. Probably matters for LAN clients to make sure they send their requests to the router. I don’t use a VPN Client so I don’t have any first-hand experience.@dave14305
Would the setting 'Accept DNS Configuration' of the VPN client (used by unbound) have any weight in the 'mission accomplished' statement?
So the DNS Firewall is now ENABLED?Bingo. That forced update made it work. Thanks Martineau...
Not sure if it was the forced update or the fact i added the unbound.conf.addgui
It's enabled just making sure it sticks.So the DNS Firewall is now ENABLED?
If you use Selective Routing, then if you use these rules@dave14305
Would the setting 'Accept DNS Configuration' of the VPN client (used by unbound) have any weight in the 'mission accomplished' statement?
LAN 192.168.1.0/24 0.0.0.0 vpn
Router 192.168.1.1 0.0.0.0 wan
Edit#2: just got the error againIt's enabled just making sure it sticks.
Edit: So far all is working as expected. Thanks again.
Apr 26 13:58:42 unbound[3620:0] fatal error: Could not read config file: /unbound.conf. Maybe try unbound -dd, it stays on the commandline to see more errors, or unbound-checkconf
A:Option ==> rl safemoderpz.conf
unbound-checkconf: no errors in /opt/share/unbound/configs/safemoderpz.conf
unbound-checkconf: no errors in /opt/var/lib/unbound/unbound.conf
Starting unbound... done.
Checking status, please wait..... unbound OK
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!