unbound with systemd and forwad-zone

Wed Aug 29 06:03:35 UTC 2018

Hello!
I have troubles while using unbound.In order for it to work automatically,I use systemd to crontol it,the service files from source/contrib,and the unbound socket I changed to listen to the Port 53.But it didn't work.
"systemctl status unbound.service" show this:
--------------------------------------------------------------------------------------------------------
● unbound.service - Validating, recursive, and caching DNS resolver
   Loaded: loaded (/lib/systemd/system/unbound.service; enabled; vendor preset: enabled)
   Active: failed (Result: exit-code) since Mon 2018-08-20 20:40:26 CST; 2s ago
     Docs: man:unbound(8)
  Process: 32441 ExecStart=/usr/local/dns/sbin/unbound (code=exited, status=226/NAMESPACE)
 Main PID: 32441 (code=exited, status=226/NAMESPACE)

Aug 20 20:40:26 ubuntu systemd[1]: Starting Validating, recursive, and caching DNS resolver...
Aug 20 20:40:26 ubuntu systemd[32441]: unbound.service: Failed to set up mount namespacing: No such file or directory
Aug 20 20:40:26 ubuntu systemd[32441]: unbound.service: Failed at step NAMESPACE spawning /usr/local/dns/sbin/unbound: No such file or directory
Aug 20 20:40:26 ubuntu systemd[1]: unbound.service: Main process exited, code=exited, status=226/NAMESPACE
Aug 20 20:40:26 ubuntu systemd[1]: unbound.service: Failed with result 'exit-code'.
Aug 20 20:40:26 ubuntu systemd[1]: Failed to start Validating, recursive, and caching DNS resolver.
--------------------------------------------------------------------------------------------------------
It is my conf:
--------------------------------------------------------------------------------------------------------
server:
num-threads: 2
so-rcvbuf: 4m
so-sndbuf: 4m
so-reuseport: yes
msg-cache-size: 64m
rrset-cache-size: 128m
cache-max-ttl: 3600
outgoing-num-tcp: 256
incoming-num-tcp: 1024
do-ip4: yes
do-udp: yes
do-tcp: yes
tcp-upstream: yes
use-systemd: yes
do-daemonize: no
access-control: 0.0.0.0/0 allow
root-hints: "root.hints"
hide-identity: yes
hide-version: yes
harden-glue:yes
qname-minimisation: yes
module-config: "iterator"
unwanted-reply-threshold: 10000000
do-not-query-localhost: no
prefetch: yes
minimal-responses: yes
remote-control:
control-enable: yes
control-interface: 127.0.0.1
control-interface: ::1
control-port: 8953
control-use-cert: "no"
include: "/usr/local/dns/etc/accelerated-domains.conf"
forward-zone:
    name: "."
    forward-addr: 127.0.0.1 at 5353
--------------------------------------------------------------------------------------------------------
The second,I want to some domains forward to opendns(accelerated-domains.conf),else forward to 127.0.0.1 at 5353.But all forward to 127.0.0.1 at 5353.How should I write the conf?

Best Regards

Van
<http://aka.ms/weboutlook>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.nlnetlabs.nl/pipermail/unbound-users/attachments/20180829/bd2557b7/attachment.htm>