BIND logging in a separate node

Ben Bridges bbridges at springnet.net
Tue Mar 3 20:21:59 UTC 2009 

Something like the following might work.

BIND:
	...
      channel my_syslog {
                syslog local6;
                severity info;
                };
	...

syslog.conf:
	...
      local6.*		@remote-syslog-server	// Forward all messages
with local6 facility to a remote syslog server
	...

You don't have to use the local6 facility.  Just choose some facility
that is not being used by any other process that logs to syslog.



> -----Original Message-----
> From: bind-users-bounces at lists.isc.org 
> [mailto:bind-users-bounces at lists.isc.org] On Behalf Of Prabhat Rana
> Sent: Tuesday, March 03, 2009 11:42 AM
> To: Jeremy C. Reed
> Cc: bind-users at lists.isc.org
> Subject: Re: BIND logging in a separate node
> 
> 
> Jeremy,
> Thanks for the response. Yes I need to change the file name 
> to avoid confusion. Yes I can forward the syslog to a 
> different node my making changes in the syslogger. But I'm 
> not sure how to make such changes so that only named/bind 
> related syslog will be forwarded and the rest will continue 
> to log locally.
> 
> 
> 
> 
> --- On Tue, 3/3/09, Jeremy C. Reed <Jeremy_Reed at isc.org> wrote:
> 
> > From: Jeremy C. Reed <Jeremy_Reed at isc.org>
> > Subject: Re: BIND logging in a separate node
> > To: "Prabhat Rana" <prana9533 at yahoo.com>
> > Cc: bind-users at lists.isc.org
> > Date: Tuesday, March 3, 2009, 11:08 AM
> > > What I'm trying to do is log /var/bind/named.stats
> > in a separate node. 
> > 
> > Note that file name is commonly used for the "rndc stats" 
> > statistics-file.
> > It may be a good idea to use a different name so you don't cause 
> > confusion or conflict.
> > 
> > > So my question is, can I specify the node IP address
> > and the filename in
> > > the named.conf where I wand to stat_file to write to?
> > > If not another option is to use syslog for all the
> > logging and then move
> > > the syslog to a different node. However, I want only
> > bind logging to be
> > > moved to a separate node. I still want all the other
> > system logging to
> > > go to /var/adm/messages as usual on the same node. So
> > can I can
> > > configure either named.conf or syslog.conf or both so
> > that I can move
> > > the bind logging to a separate box?
> > 
> > For that use the syslog and configure your Solaris 10 syslogger to 
> > forward your logging to a different syslog server. You will have to 
> > configure your syslogger for this. Also in your named.conf's syslog 
> > channel, you can use the "syslog" destination clause to 
> choose which 
> > syslog facility to log to (so you can then configure your syslogger 
> > appropriately.)
> > 
> > Maybe someone on this list can share some Solaris 
> syslog.conf examples 
> > here ...
> 
> 
>       
> 
> _______________________________________________
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>

More information about the bind-users mailing list