Turning log on bind for troubleshooting
Eduardo Bonsi
beartcom at pacbell.net
Tue Nov 15 22:16:16 UTC 2011
Sebastian;
Thanks so much for that! I will try this at the slave server.
I already configured for the master and these are my first issues:
15-Nov-2011 13:40:58.312 general: warning:
/var/named/bonsi.org.external.hosts:15: ignoring out-of-zone data
(EduardoBonsi.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning:
/var/named/bonsi.org.external.hosts:16: ignoring out-of-zone data
(ftp.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning:
/var/named/bonsi.org.external.hosts:17: ignoring out-of-zone data
(mail.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning:
/var/named/bonsi.org.external.hosts:18: ignoring out-of-zone data
(ns1.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning:
/var/named/bonsi.org.external.hosts:19: ignoring out-of-zone data
(ns2.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning:
/var/named/bonsi.org.external.hosts:20: ignoring out-of-zone data
(qtdss.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: warning:
/var/named/bonsi.org.external.hosts:21: ignoring out-of-zone data
(www.45.200.63.in-addr.arpa)
15-Nov-2011 13:40:58.312 general: error: zone bonsi.org/IN/external: NS
'ns1.bonsi.org' has no address records (A or AAAA)
15-Nov-2011 13:40:58.312 general: error: zone bonsi.org/IN/external: NS
'ns2.bonsi.org' has no address records (A or AAAA)
15-Nov-2011 13:40:58.312 general: error: zone bonsi.org/IN/external:
bonsi.org/MX 'mail.bonsi.org' has no address records (A or AAAA)
I will fix these issues right the way.
For those out there interested to know how I did, here the steps:
1. inserted these at the end of named.conf
logging {
channel dnssec_log {
file "log/dnssec" size 20m;
print-time yes;
print-category yes;
print-severity yes;
severity debug 3;
};
category dnssec {
dnssec_log;
default_syslog;
default_debug;
default_stderr;
};
//
channel "debug" {
file "/var/log/named/namedlogs" versions 2 size 50m;
severity warning;
print-time yes;
print-severity yes;
print-category yes;
};
category "default" { "debug"; };
category "general" { "debug"; };
category "database" { "debug"; };
category "security" { "debug"; };
category "config" { "debug"; };
category "resolver" { "debug"; };
category "xfer-in" { "debug"; };
category "xfer-out" { "debug"; };
category "notify" { "debug"; };
category "client" { "debug"; };
category "unmatched" { "debug"; };
category "network" { "debug"; };
category "update" { "debug"; };
category "queries" { "debug"; };
category "dispatch" { "debug"; };
category "dnssec" { "debug"; };
category "lame-servers" { "debug"; };
};
2. You must create the path and the file using the terminal as "root"
just the way it show here:
[user:~] root# cd /var/log
[user:/var/log] root# mkdir named
[user:/var/log] root# cd
3. To create the file inside of the directory /var/log/named/, use nano;
[user:~] root# nano /var/log/named/namedlogs
On 11/15/11 1:41 PM, Sebastian Tymków wrote:
> Hello,
>
> Log statement is whole config block.
> Probably this link help you better :
> http://bec.at/support/bind9/Bv9ARM.ch06.html#AEN1566
> Below I attach my example :
>
> // declare log statement
> logging {
> // declare chanel log2messages
> channel log2_s {
> syslog daemon; // where logs should be directed
> severity warning;
> print-category no;
> print-severity no;
> print-time no;
> };
> //declare debug channel
> channel log2_debug {
> syslog daemon;
> severity debug;
> print-category yes;
> print-severity yes;
> print-time yes;
> };
> // declare /dev/null
> channel log2_null {
> null;
> };
>
>
> // declare which category should use which declaration
> category default { log2_syslog; };
> category config { log2_syslog; };
> category queries { log2_syslog; };
> category lame-servers { log2_syslog; };
> category update { log2_debug; };
> category xfer-in { log2_syslog; };
> category xfer-out { log2_syslog; };
> category notify { log2_syslog; };
> category security { log2_null; ;
> };
>
>
> Best regards,
>
> Sebastian
>
>
> On Tue, Nov 15, 2011 at 8:49 PM, Eduardo Bonsi<beartcom at pacbell.net> wrote:
>> Sebastian;
>>
>> Thanks! I was looking at this log statement last night. I found two
>> statements: Not sure what is the best one to debug.
>> They are also not clear where to insert these statements:
>> On options or some place else in the end of named.conf.
>>
>> http://www.zytrax.com/books/dns/ch7/logging.html
>>
>> logging{
>> channel simple_log {
>> file "/var/log/named/bind.log" versions 3 size 5m;
>> severity warning;
>> print-time yes;
>> print-severity yes;
>> print-category yes;
>> };
>> category default{
>> simple_log;
>> };
>> };
>>
>> ********************************************************
>> http://www.netadmintools.com/art233.html
>>
>> logging {
>> category "default" { "debug"; };
>> category "general" { "debug"; };
>> category "database" { "debug"; };
>> category "security" { "debug"; };
>> category "config" { "debug"; };
>> category "resolver" { "debug"; };
>> category "xfer-in" { "debug"; };
>> category "xfer-out" { "debug"; };
>> category "notify" { "debug"; };
>> category "client" { "debug"; };
>> category "unmatched" { "debug"; };
>> category "network" { "debug"; };
>> category "update" { "debug"; };
>> category "queries" { "debug"; };
>> category "dispatch" { "debug"; };
>> category "dnssec" { "debug"; };
>> category "lame-servers" { "debug"; };
>> channel "debug" {
>> file "/tmp/nameddbg" versions 2 size 50m;
>> print-time yes;
>> print-category yes;
>> };
>> };
>>
>>
>>
>> On 11/15/11 12:42 AM, Sebastian Tymków wrote:
>>>
>>> Hi,
>>>
>>> Look at this : http://www.zytrax.com/books/dns/ch7/logging.html
>>> For troubleshooting I suggest using debug mode.
>>>
>>> Best regards,
>>> Sebastian
>>>
>>> On Tue, Nov 15, 2011 at 9:13 AM, Eduardo Bonsi<beartcom at pacbell.net>
>>> wrote:
>>>>
>>>> What is the best statement to insert on name.conf to generate logs for
>>>> troubleshooting bind 9.x?
>>>>
>>>> Thanks!
>>>>
>>>>
>>>>
>>>> --
>>>> BEARTCOMMUNICATIONS
>>>> Eduardo Bonsi
>>>> System - Network Admin
>>>> beartcom at pacbell.net
>>>> webmaster at beart.com
>>>> _______________________________________________
>>>> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
>>>> unsubscribe from this list
>>>>
>>>> bind-users mailing list
>>>> bind-users at lists.isc.org
>>>> https://lists.isc.org/mailman/listinfo/bind-users
>>>>
>>>
>>
>>
>> --
>> BEARTCOMMUNICATIONS
>> Eduardo Bonsi
>> System - Network Admin
>> beartcom at pacbell.net
>> webmaster at beart.com
>>
>
--
BEARTCOMMUNICATIONS
Eduardo Bonsi
System - Network Admin
beartcom at pacbell.net
webmaster at beart.com
More information about the bind-users
mailing list