Comments (7)
Can you share your configuration please?
from dns.
Maybe I'm making some mistake, but know can get the root hints, but it's on a infinite loop.
My config is:
cloudflared-tls:
image: qmcgaw/dns:latest
container_name: cloudflared-tls
hostname: cloudflared-tls
network_mode: bridge
ports:
- 53:53/udp
environment:
VERBOSITY: 1
VERBOSITY_DETAILS: 1
BLOCK_MALICIOUS: 'off'
BLOCK_SURVEILLANCE: 'off'
BLOCK_ADS: 'off'
BLOCK_IPS: ''
BLOCK_HOSTNAMES: ''
UNBLOCK: ''
LISTENINGPORT: 53
PROVIDERS: 'cloudflare.security'
CACHING: 'on'
CHECK_UNBOUND: 'on'
UPDATE_PERIOD: '24h'
restart: always
and the loop is in "starting unbound" and on, but never finish. Sorry if my explanations are very quick but my knoledge of docker containers are very limited.
from dns.
I just ran the exact same configuration with docker-compose run --rm cloudflared-tls
and it's working for me (I removed VERBOSITY
and VERBOSITY_DETAILS
to have less logs):
2021-01-20T03:16:32.441Z INFO using DNS address 127.0.0.1 internally
2021-01-20T03:16:32.441Z INFO healthcheck server: listening on 127.0.0.1:9999
2021-01-20T03:16:32.441Z INFO generating Unbound configuration
2021-01-20T03:16:32.441Z INFO starting unbound
2021-01-20T03:16:32.453Z INFO unbound: [1611112592] unbound[17:0] notice: init module 0: validator
2021-01-20T03:16:32.453Z INFO unbound: [1611112592] unbound[17:0] notice: init module 1: iterator
2021-01-20T03:16:32.476Z INFO unbound: [1611112592] unbound[17:0] info: start of service (unbound 1.10.1).
2021-01-20T03:16:32.778Z INFO unbound: [1611112592] unbound[17:1] info: generate keytag query _ta-4a5c-4f66. NULL IN
2021-01-20T03:16:32.785Z INFO unbound: [1611112592] unbound[17:0] info: generate keytag query _ta-4a5c-4f66. NULL IN
2021-01-20T03:16:32.949Z INFO restarting Unbound the first time to get updated files
2021-01-20T03:16:32.949Z INFO downloading DNSSEC root hints and named root
2021-01-20T03:16:34.044Z INFO downloading and building DNS block lists
2021-01-20T03:16:34.044Z INFO 0 hostnames blocked overall
2021-01-20T03:16:34.044Z INFO 9 IP addresses blocked overall
2021-01-20T03:16:34.044Z INFO generating Unbound configuration
2021-01-20T03:16:34.045Z INFO starting unbound
2021-01-20T03:16:34.055Z INFO unbound: [1611112594] unbound[22:0] notice: init module 0: validator
2021-01-20T03:16:34.055Z INFO unbound: [1611112594] unbound[22:0] notice: init module 1: iterator
2021-01-20T03:16:34.073Z INFO unbound: [1611112594] unbound[22:0] info: start of service (unbound 1.10.1).
2021-01-20T03:16:34.389Z INFO unbound: [1611112594] unbound[22:0] info: generate keytag query _ta-4a5c-4f66. NULL IN
My guess would be that Cloudflare's 1.1.1.2
and 1.0.0.2
IP addresses are blocked on your network. Would you be located in a country known for blocking IP addresses perhaps?
from dns.
I changed to "cloudflared", and verbosity to "0", and I'm on the same loop:
...
2021-01-19T22:21:20.338Z INFO starting unbound
2021-01-19T22:21:20.525Z INFO unbound: [1611094880] unbound[15:0] info: start of service (unbound 1.10.1).
2021-01-19T22:21:21.127Z INFO restarting Unbound the first time to get updated files
2021-01-19T22:21:21.128Z INFO downloading DNSSEC root hints and named root
2021-01-19T22:21:24.427Z INFO downloading and building DNS block lists
2021-01-19T22:21:24.427Z INFO 0 hostnames blocked overall
2021-01-19T22:21:24.427Z INFO 9 IP addresses blocked overall
2021-01-19T22:21:24.427Z INFO generating Unbound configuration
2021-01-19T22:21:24.427Z INFO starting unbound
...
I'm using pihole, but I disabled it for testing this container, I don't understand what is the problem. Thank you very much for the quick responses.
from dns.
Sorry, but maybe I was mistaken, maybe its working but I'm using portainer, and it's marking the container as "Starting", and never go to "healthy" or "running".
from dns.
So the logs you showed in your first message shows its failing in a loop (retrying in 10s), but the one you show now shows the program is working now.
It might also stay as Starting
as the healthcheck triggers only a few seconds/minutes after the container starts. As long as it's not unhealthy
😉
from dns.
I'm closing the issue for now, but feel free to comment here or open a new one if something else doesn't seem to work. Cheers!
from dns.
Related Issues (20)
- feature request: environment variable to allow privileged ports when running without root
- All `pkg` constructors should validate settings and return an error HOT 1
- Remove exported interfaces in `pkg` and use only local interfaces HOT 1
- Remove prometheus.Registerer interface usage HOT 1
- Add comments for all exported methods in the `pkg` directory
- Option to log requests/responses in color
- cache: remove all expired elements from oldest to newest
- filter: Middleware should keep blocked cached response HOT 1
- Cannot start v2-beta container: invalid value for max entries of the LRU cache HOT 2
- Hardcode DoH URL ip addresses if no DoT/plaintext-DNS should be used to resolve the URL HOT 1
- Add Mullvad DNS servers
- Review namings according to IEFT document
- Respond too large responses with truncated field and switch to TCP
- Ensure dns:v2.0.0-beta works with TCP over 53 for truncated messages
- Enhancement: use pool of DNS connections
- Document the difference between DoT and DoH
- Investigate using `golang.org/x/net/dns`
- MacOS port 53 conflict with mdnsresponder HOT 17
- Panic error on Windows Server 2022 running on a VM HOT 13
- Error on Linux Cent OS with beta version HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from dns.