Bug #16422
closed
DNS Resolver không phản hồi ổn định qua CARP VIP sau nâng cấp lên pfSense 2.8.1
0%
Description
Sau khi nâng cấp từ pfSense CE 2.8.0 lên 2.8.1, hệ thống gặp lỗi DNS không phản hồi ổn định qua CARP VIP. Khi dùng VIP làm gateway và DNS (192.168.0.254), truy cập web từ client nội bộ thường phải refresh 1–2 lần mới tải được trang.
Đã thử các bước khắc phục:
- Tắt pfBlockerNG DNSBL
- Xóa dòng `include: /var/unbound/pfb_dnsbl.*conf`
- Thêm cấu hình cache TTL:
server:
cache-min-ttl: 3600
cache-max-ttl: 86400
prefetch: yes
serve-expired: yes
Updated by Jim Pingle 2 days ago
- Status changed from New to Not a Bug
We can only take issue reports in English but running that through a translator it appears likely your problem is related to pfBlocker and needing to use python mode for DNSBL so it doesn't run out of resources. Post on the forum for assistance.
Updated by Xuân Sơn Nguyễn 1 day ago
After upgrading from pfSense CE 2.8.0 to 2.8.1, the system encountered unstable DNS response issues via the CARP VIP. When using the VIP (192.168.0.254) as both the gateway and DNS server, internal clients often need to refresh the webpage 1–3 times before it loads successfully.
Troubleshooting steps already attempted:
- Disabled pfBlockerNG DNSBL
- Removed the line include: /var/unbound/pfb_dnsbl.*conf
- Added cache TTL configuration:
server:
cache-min-ttl: 3600
cache-max-ttl: 86400
prefetch: yes
serve-expired: yes