og" { file "/var/log/named/query.log"; print-time
> yes; };
> //category queries { querylog; };
> };
>
>
> I'd like to keep logging going, for obvious reasns, but need to kill the
> 'client query (cache) denied' messages
>
> sofar
y queries { querylog; };
};
I'd like to keep logging going, for obvious reasns, but need to kill the
'client query (cache) denied' messages
sofar all the google-found 'solutions' are: turn off all logging
Thanks
___
Please visit http
In message <20110120021335.5fe392c...@mail.nsbeta.info>, p...@mail.nsbeta.info w
rites:
>
> I saw lots of this info in bind's log:
>
> Jan 20 05:25:43 ns2 named[6538]: client 69.10.140.146#33135: query (cache)
> 's2.xxrz.game.yy.com.cdn20.com/A/IN' denied
> Jan 20 05:26:47 ns2 named[6538]: cli
In article ,
p...@mail.nsbeta.info wrote:
> I saw lots of this info in bind's log:
>
> Jan 20 05:25:43 ns2 named[6538]: client 69.10.140.146#33135: query (cache)
> 's2.xxrz.game.yy.com.cdn20.com/A/IN' denied
> Jan 20 05:26:47 ns2 named[6538]: client 200.31.4.71#41137: query (cache)
> 's3.xxrz
I saw lots of this info in bind's log:
Jan 20 05:25:43 ns2 named[6538]: client 69.10.140.146#33135: query (cache)
's2.xxrz.game.yy.com.cdn20.com/A/IN' denied
Jan 20 05:26:47 ns2 named[6538]: client 200.31.4.71#41137: query (cache)
's3.xxrz.game.yy.com.cdn20.com/A/IN' denied
I'm using bind-
Hopefully you understand that when you turn recursion off, that means
you can only answer from zones that you actually *host* (i.e. for which
you are "master" or "slave").
But you have no "master" or "slave" zones defined in the "mynetwork" view.
Therefore it is not possible for that view to d
On 27/09/10 09:45, David S. wrote:
Hi Pil,
"In that case, don't you want "recursion on" in view "mynetwork"?"
I won't recursion in my network, so recursion is no.
Sorry, I don't understand. Perhaps someone else can help you.
___
bind-users mailing li
Hi Pil,
"In that case, don't you want "recursion on" in view "mynetwork"? "
I won't recursion in my network, so recursion is no.
-
--
Best regards,
David
http://blog.pnyet.web.id
On 09/27/2010 03:32 PM, Phil Mayers wrote:
> In that case, don't you want "recursion on" in view "mynetwork"?
_
On 09/27/2010 09:25 AM, David S. wrote:
I want to build name server for ISP:
Please don't email me directly; replying to the list is the correct
thing to do.
view "mynetwork" allow "trusted" to lookup domain / host in internet.
In that case, don't you want "recursion on" in view "mynetwo
On 09/26/2010 10:57 PM, David S. wrote:
I've removed "additional-from-cache" and restart bind, below part of
named.conf
Ok, bad guess on my part :o(
Not sure I'm afraid. I don't really understand your config; do you mean
to have recursion off in both views?
What is sending the queries? They
In article ,
"David S." wrote:
> I've removed "additional-from-cache" and restart bind, below part of
> named.conf
You still haven't added 'allow-query-cache { "trusted};};'.
>
> options {
> directory "/var/named";
> allow-transfer { "xfer"; };
> pid-file "named.pid";
I've removed "additional-from-cache" and restart bind, below part of
named.conf
options {
directory "/var/named";
allow-transfer { "xfer"; };
pid-file "named.pid";
listen-on port 53 { any; };
statistics-file "named.stats";
memstatistics-file "named.m
On 09/26/2010 09:25 PM, David S. wrote:
Dear All,
I had problem when trying to use "view" class on my named.conf, please
see attached file and below my query log:
You've set "additional-from-cache" but not "allow-query-cache" ACL. The
default has everyone denied.
Do you need to set "additio
Dear All,
I had problem when trying to use "view" class on my named.conf, please
see attached file and below my query log:
# tail -f /var/log/named/query.log
27-Sep-2010 02:54:49.738 security: info: client 127.0.0.1#48295: view
mynetwork: query (cache) 'yahoo.com/A/IN' denied
27-Sep-2010 02:59
> > In message <8401907190740j6e04pc23316827fe0b...@mail.gmail.com>,
> > Bradle
> > y Caricofe writes:
> [...]
> > > 19-Jul-2009 10:34:29.635 client 84.235.6.53#1276: query (cache) '
> > > 6q6vszqgm.w8n08fo0.taha.com/A/IN' denied
> [...]
On 29.07.09 17:12, Matus UHLAR - fantomas wrote:
>
> In message <8401907190740j6e04pc23316827fe0b...@mail.gmail.com>,
> Bradle
> y Caricofe writes:
[...]
> > 19-Jul-2009 10:34:29.635 client 84.235.6.53#1276: query (cache) '
> > 6q6vszqgm.w8n08fo0.taha.com/A/IN' denied
[...]
> > There are a total of 26000 ip's hitting us daily and causing t
In message <8401907190740j6e04pc23316827fe0b...@mail.gmail.com>, Bradle
y Caricofe writes:
> Hello,
>
> Firstly, I know this issue has already been covered in some depth here. I've
> spent hours perusing the archives and researching this online, and am still
> not sure about what I'm seei
Hello,
Firstly, I know this issue has already been covered in some depth here. I've
spent hours perusing the archives and researching this online, and am still
not sure about what I'm seeing. This weekend, I migrated two old Solaris 5.7
boxes running BIND 9.2, over to two new CentOS systems runnin
1d6h26m5s IN A 205.178.144.46
> >
> > BIND 9.6.0-P1 determines that although it may have this information
> > about tfn.net in its cache, it cannot give the information to the
> > requester because I have not configured BIND to allow external users
> > to query th
che, would it go and retrieve the information and then
decide that it was unable to give the cached information to the
requester?
Should the "query (cache) denied" message be produced? We were
confused because we did not see any queries for tfn.net in the
named.querylog file, where we log
trieve the information and then
decide that it was unable to give the cached information to the
requester?
Should the "query (cache) denied" message be produced? We were
confused because we did not see any queries for tfn.net in the
named.querylog file, where we log all DNS queries. I had
21 matches
Mail list logo
