RPZ logging

Bob Harold rharolde at umich.edu
Sun Apr 29 03:42:05 UTC 2018

On Sat, Apr 28, 2018 at 11:29 PM, Blason R <blason16 at gmail.com> wrote:

> Hi Folks,
> I have been struggligng with exact RPZ/Bind option/statement which enables
> the logging for RPZ and shows if the query matches RPZ zone.
> Can someone please help me?
I think the required rpz logging related lines in my named.conf are:

logging {

channel "rpz_file" {
file "/var/log/named/rpz.log" versions 10 size 104857600;
severity dynamic;
print-time yes;
print-severity yes;
                print-category yes;

category "rpz" {

You might want less versions and/or a smaller size - my values allow rpz
logs to fill 1gb of disk.

Bob Harold
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20180428/e5c5a50b/attachment-0001.html>

More information about the bind-users mailing list