Turning log on bind for troubleshooting

Eduardo Bonsi beartcom at pacbell.net
Tue Nov 15 22:16:16 UTC 2011


Sebastian;

Thanks so much for that! I will try this at the slave server.

I already configured for the master and these are my first issues:

15-Nov-2011 13:40:58.312 general: warning: 
/var/named/bonsi.org.external.hosts:15: ignoring out-of-zone data 
(EduardoBonsi.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning: 
/var/named/bonsi.org.external.hosts:16: ignoring out-of-zone data 
(ftp.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning: 
/var/named/bonsi.org.external.hosts:17: ignoring out-of-zone data 
(mail.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning: 
/var/named/bonsi.org.external.hosts:18: ignoring out-of-zone data 
(ns1.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning: 
/var/named/bonsi.org.external.hosts:19: ignoring out-of-zone data 
(ns2.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning: 
/var/named/bonsi.org.external.hosts:20: ignoring out-of-zone data 
(qtdss.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning: 
/var/named/bonsi.org.external.hosts:21: ignoring out-of-zone data 
(www.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: error: zone bonsi.org/IN/external: NS 
'ns1.bonsi.org' has no address records (A or AAAA)
15-Nov-2011 13:40:58.312 general: error: zone bonsi.org/IN/external: NS 
'ns2.bonsi.org' has no address records (A or AAAA)
15-Nov-2011 13:40:58.312 general: error: zone bonsi.org/IN/external: 
bonsi.org/MX 'mail.bonsi.org' has no address records (A or AAAA)

I will fix these issues right the way.


For those out there interested to know how I did, here the steps:

1. inserted these at the end of named.conf

logging {
	channel dnssec_log {
		file "log/dnssec" size 20m;
		print-time yes;
		print-category yes;
		print-severity yes;
		severity debug 3;
		};
	category dnssec {
		dnssec_log;
		default_syslog;
		default_debug;
		default_stderr;
		};

//
channel "debug" {
file "/var/log/named/namedlogs" versions 2 size 50m;
severity warning;
print-time yes;
print-severity yes;
print-category yes;
      };
category "default" { "debug"; };
category "general" { "debug"; };
category "database" { "debug"; };
category "security" { "debug"; };
category "config" { "debug"; };
category "resolver" { "debug"; };
category "xfer-in" { "debug"; };
category "xfer-out" { "debug"; };
category "notify" { "debug"; };
category "client" { "debug"; };
category "unmatched" { "debug"; };
category "network" { "debug"; };
category "update" { "debug"; };
category "queries" { "debug"; };
category "dispatch" { "debug"; };
category "dnssec" { "debug"; };
category "lame-servers" { "debug"; };
};

2. You must create the path and the file using the terminal as "root" 
just the way it show here:

[user:~] root# cd /var/log
[user:/var/log] root# mkdir named
[user:/var/log] root# cd

3. To create the file inside of the directory /var/log/named/, use nano;

[user:~] root# nano /var/log/named/namedlogs


On 11/15/11 1:41 PM, Sebastian Tymków wrote:
> Hello,
>
> Log statement is whole config block.
> Probably this link help you better :
> http://bec.at/support/bind9/Bv9ARM.ch06.html#AEN1566
> Below I attach my example :
>
> // declare log statement
> logging {
>          // declare chanel log2messages
>          channel log2_s {
>                  syslog daemon; // where logs should be directed
>                  severity warning;
>                  print-category no;
>                  print-severity no;
>                  print-time no;
>          };
>          //declare debug channel
>          channel log2_debug {
>                  syslog daemon;
>                  severity debug;
>                  print-category yes;
>                  print-severity yes;
>                  print-time yes;
>          };
>         // declare /dev/null
>          channel log2_null {
>                  null;
>          };
>
>
>         // declare which category should use which declaration
>          category default { log2_syslog; };
>          category config { log2_syslog; };
>          category queries { log2_syslog; };
>          category lame-servers { log2_syslog; };
>          category update { log2_debug; };
>          category xfer-in { log2_syslog; };
>          category xfer-out { log2_syslog; };
>          category notify { log2_syslog; };
>          category security { log2_null; ;
> };
>
>
> Best regards,
>
> Sebastian
>
>
> On Tue, Nov 15, 2011 at 8:49 PM, Eduardo Bonsi<beartcom at pacbell.net>  wrote:
>> Sebastian;
>>
>> Thanks! I was looking at this log statement last night. I found two
>> statements: Not sure what is the best one to debug.
>> They are also not clear where to insert these statements:
>> On options or some place else in the end of named.conf.
>>
>> http://www.zytrax.com/books/dns/ch7/logging.html
>>
>> logging{
>>   channel simple_log {
>>     file "/var/log/named/bind.log" versions 3 size 5m;
>>     severity warning;
>>     print-time yes;
>>     print-severity yes;
>>     print-category yes;
>>   };
>>   category default{
>>     simple_log;
>>   };
>> };
>>
>> ********************************************************
>> http://www.netadmintools.com/art233.html
>>
>> logging {
>> category "default" { "debug"; };
>> category "general" { "debug"; };
>> category "database" { "debug"; };
>> category "security" { "debug"; };
>> category "config" { "debug"; };
>> category "resolver" { "debug"; };
>> category "xfer-in" { "debug"; };
>> category "xfer-out" { "debug"; };
>> category "notify" { "debug"; };
>> category "client" { "debug"; };
>> category "unmatched" { "debug"; };
>> category "network" { "debug"; };
>> category "update" { "debug"; };
>> category "queries" { "debug"; };
>> category "dispatch" { "debug"; };
>> category "dnssec" { "debug"; };
>> category "lame-servers" { "debug"; };
>> channel "debug" {
>> file "/tmp/nameddbg" versions 2 size 50m;
>> print-time yes;
>> print-category yes;
>> };
>> };
>>
>>
>>
>> On 11/15/11 12:42 AM, Sebastian Tymków wrote:
>>>
>>> Hi,
>>>
>>> Look at this : http://www.zytrax.com/books/dns/ch7/logging.html
>>> For troubleshooting I suggest using debug mode.
>>>
>>> Best regards,
>>> Sebastian
>>>
>>> On Tue, Nov 15, 2011 at 9:13 AM, Eduardo Bonsi<beartcom at pacbell.net>
>>>   wrote:
>>>>
>>>> What is the best statement to insert on name.conf to generate logs for
>>>> troubleshooting bind 9.x?
>>>>
>>>> Thanks!
>>>>
>>>>
>>>>
>>>> --
>>>> BEARTCOMMUNICATIONS
>>>> Eduardo Bonsi
>>>> System - Network Admin
>>>> beartcom at pacbell.net
>>>> webmaster at beart.com
>>>> _______________________________________________
>>>> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
>>>> unsubscribe from this list
>>>>
>>>> bind-users mailing list
>>>> bind-users at lists.isc.org
>>>> https://lists.isc.org/mailman/listinfo/bind-users
>>>>
>>>
>>
>>
>> --
>> BEARTCOMMUNICATIONS
>> Eduardo Bonsi
>> System - Network Admin
>> beartcom at pacbell.net
>> webmaster at beart.com
>>
>


-- 
BEARTCOMMUNICATIONS
Eduardo Bonsi
System - Network Admin
beartcom at pacbell.net
webmaster at beart.com



More information about the bind-users mailing list