kulikov-a
commented
2 years ago Hi imho there is another option: try to use monit to monitor doc.lan:443 response and restart nginx. but imho there is not much benefit from using fqdn upstreams with free ("Open Source") nginx: fqdn is resolved once during process startup and for the whole time of work (need to restart nginx to resolve the name again)
chlochlo78
Important notices
Describe the bug:
To Reproduce
restarting all opnsense ( protectli 4 port )
Expected behavior
service named waiting start before all service, maybe
Describe alternatives you considered
1.manual start service nginx after named is up from Services => Nginx: Configuration ( start icône ) or 2.rename upstream server with ip instead of local fqdn ( need resolved name ipv4 and ipv6 from named ) or 3.using kloax in DNSCrypt-Proxy to fix upstream name's server ( ipv4/ipv6 ) <= does not work
Tip: to validate your setup was working with the previous version, use opnsense-revert (https://docs.opnsense.org/manual/opnsense_tools.html#opnsense-revert) => service nginx was not installed before OPNsense 22.1.10-amd64
Relevant log files
error log found at system log file => general /usr/local/etc/rc.d/nginx: WARNING: failed to start nginx_ 2022/07/10 14:03:04 [emerg] 27036#100188: host not found in upstream "doc.lan:443" in /usr/local/etc/nginx/nginx.conf:156
Additional context
using named forward to DNSCrypt-Proxy with list => adguard-dns-ipv6 adguard-dns
Environment
OPNsense 19.1.1 (amd64, OpenSSL). Intel® Xeon™ E3-1225V5 3.3Ghz Quad Core Network Intel® I210-AT
special thx :)
Great Job with Opnsense , Very Thx for everybody who works to this project