Monitoring of "blackholed" DNS servers

Warren Kumari warren at
Fri Jun 8 18:04:06 UTC 2012

If it were me I'd just block access with iptables (and maybe blackhole as well if I were sufficiently concerned) and combine that with the iptables log action…


On Jun 8, 2012, at 1:44 PM, <Christopher.Harrington at> wrote:

> All,
> We have a list of DNS servers that we do not want our BIND DNS server interacting with. We can put the IP addresses of those servers in the blackhole substatement under options. Is there a way to monitor for when our DNS server tries to communicate with servers that are in the blackhole list? Is there a certain level of logging that needs to be enabled to see this?
> Thanks,
> --Chris
> _______________________________________________
> Please visit to unsubscribe from this list
> bind-users mailing list
> bind-users at

With Feudalism, it's your Count that votes.

More information about the bind-users mailing list