<div dir="ltr">Hi,<div>Here are the unbound.conf file & log error:</div><div>1. Unbound.conf</div><div>server:<br> directory: "/etc/unbound"<br> logfile: /var/log/unbound/unbound.log<br> pidfile: /var/run/unbound.pid<br># access-control: <a href="http://127.0.0.0/8">127.0.0.0/8</a> allow<br> access-control: ::0/0 allow<br> access-control: <a href="http://0.0.0.0/0">0.0.0.0/0</a> allow<br># access-control: 2001:19f0:5:3c01:5400:3ff:fe87:a/64 allow<br> interface: 127.0.0.1<br> interface: ::1<br> interface: 0.0.0.0<br> port: 53<br> do-ip4: yes<br> do-ip6: yes<br> do-tcp: yes<br> do-udp: yes<br> verbosity: 1<br> log-queries: yes<br> hide-identity: yes<br> hide-version: yes<br># auto-trust-anchor-file: "/var/lib/unbound/root.key"<br><br><br><br> module-config: "validator python iterator"<br> module-config: "respip validator iterator"<br># chroot: ""<br><br> statistics-interval: 0<br> extended-statistics: yes<br> statistics-cumulative: no<br><br>python:<br> python-script: "/etc/unbound/nxredirect.py"<br><br>rpz:<br> name: <a href="http://trinv.com">trinv.com</a><br> master: 192.0.0.2<br></div><div><br></div><div>2. Log errors</div><div>Oct 16 10:29:56 ip-172-32-10-82 systemd[1]: Stopped Unbound DNS server.<br>Oct 16 10:29:56 ip-172-32-10-82 systemd[1]: Starting Unbound DNS server...<br>Oct 16 10:29:57 ip-172-32-10-82 package-helper[50489]: /var/lib/unbound/root.key has content<br>Oct 16 10:29:57 ip-172-32-10-82 package-helper[50489]: success: the anchor is ok<br>Oct 16 10:29:57 ip-172-32-10-82 unbound[50490]: /etc/unbound/unbound.conf:36: error: unknown keyword 'rpz'<br>Oct 16 10:29:57 ip-172-32-10-82 unbound[50490]: /etc/unbound/unbound.conf:36: error: stray ':'<br>Oct 16 10:29:57 ip-172-32-10-82 unbound[50490]: /etc/unbound/unbound.conf:37: error: syntax error<br>Oct 16 10:29:57 ip-172-32-10-82 unbound[50490]: read /etc/unbound/unbound.conf failed: 3 errors in configuration file<br>Oct 16 10:29:57 ip-172-32-10-82 unbound[50490]: [1634380197] unbound[50490:0] fatal error: Could not read config file: /etc/unbound/unbound.conf. Maybe try unbound -dd, it stays on the commandline to see more errors, or unbound-checkconf<br>Oct 16 10:29:57 ip-172-32-10-82 systemd[1]: unbound.service: Main process exited, code=exited, status=1/FAILURE<br>Oct 16 10:29:57 ip-172-32-10-82 systemd[1]: unbound.service: Failed with result 'exit-code'.<br>Oct 16 10:29:57 ip-172-32-10-82 systemd[1]: Failed to start Unbound DNS server.<br></div><div><br></div><div>Plz help me to fix it.</div><div>Thanks & Best Regards,</div><div><br></div><div><div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div style="text-align:center"><b><font face="monospace, monospace" color="#3d85c6"><br></font></b></div><div style="text-align:left"><i><b><font face="monospace, monospace" color="#3d85c6"><br></font></b></i></div><div style="text-align:left"><i><b><font face="monospace, monospace" color="#3d85c6">Nguyen Van Tri</font></b></i></div><div style="text-align:left"><font color="#3d85c6" face="monospace, monospace"><b><i>Da Nang - Viet Nam</i></b></font></div><div style="text-align:left"><i><b><font face="monospace, monospace" color="#3d85c6">Tel: 0974 919 037</font></b></i></div><div style="text-align:left"><i><b><font face="monospace, monospace" color="#3d85c6">Email: <a href="mailto:nguyenvantri.10dt3@gmail.com" target="_blank">nguyenvantri.10dt3@gmail.com</a></font></b></i></div></div></div></div></div></div></div></div></div></div><br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Sat, Oct 16, 2021 at 5:26 PM Jaap Akkerhuis <<a href="mailto:jaap@nlnetlabs.nl">jaap@nlnetlabs.nl</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"> Nguyễn Văn Trí writes:<br>
<br>
> 2. Unbound-checkconf<br>
> # unbound-checkconf /etc/unbound/unbound.conf<br>
> /usr/local/etc/unbound/var/log/unbound: No such file or directory<br>
> [1634376986] unbound-checkconf[50224:0] fatal error: logfile directory does<br>
> not exist<br>
><br>
> But still can not start unbound with RPZ.<br>
<br>
You aparently changed stuff you don't tell about. I cann not help you this way.<br>
<br>
jaap<br>
</blockquote></div>