]> git.ipfire.org Git - people/pmueller/ipfire-2.x.git/blobdiff - src/initscripts/system/unbound
projects / people / pmueller / ipfire-2.x.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
unbound: Do not update the forwarders when we are running in TLS mode
[people/pmueller/ipfire-2.x.git] / src / initscripts / system / unbound
diff --git a/src/initscripts/system/unbound b/src/initscripts/system/unbound
index 6290127b8aba0be834f670380763b3230cd65dbe..e1de95f99510e3dac589aab45853a646c49abcf4 100644 (file)
--- a/src/initscripts/system/unbound
+++ b/src/initscripts/system/unbound
@@ -302,9 +302,13 @@ resolve() {
 }
 
 update_forwarders() {
-       # DO nothing when we do not use the ISP name servers
+       # Do nothing when we do not use the ISP name servers
        [ "${USE_ISP_NAMESERVERS}" != "on" ] && return 0
 
+       # We cannot update anything when using TLS
+       # Unbound will then try to connect to the servers using UDP on port 853
+       [ "${PROTO}" = "TLS" ] && return 0
+
        # Update unbound about the new servers
        local nameservers=( $(read_name_servers) )
        if [ -n "${nameservers[*]}" ]; then
Peter's tree of IPFire 2.x