Bind query logging
Darren Ankney
darren.ankney at gmail.com
Sat Jun 10 11:18:27 UTC 2023
Hi Zoltan,
I don't see the "default" category defined there. The default is
syslog I believe. This might be why you are getting some logs in
syslog: see: https://bind9.readthedocs.io/en/v9_18_11/reference.html#logging-block-definition-and-usage
for further info.
Perhaps define category default { } and a channel { } to go with it?
I have this in my server:
channel primary_log {
file "/var/log/named/primary.log" versions 10 size 10m;
severity info;
print-time local;
print-category yes;
print-severity yes;
};
category default {
primary_log;
};
Thank you,
Darren Ankney
On Sat, Jun 10, 2023 at 1:01 AM Kereszt Vezeték <hintalo68 at gmail.com> wrote:
>
> Hi
>
> logging {
> channel update_log {
> file "/var/log/bind/updates/update-debug.log" versions
> 5 size 20m;
> severity warning;
> print-category yes;
> print-severity yes;
> print-time yes;
> };
> category update { update_log; };
>
> channel zone_transfers_log {
> file "/var/log/bind/xfer/zone-transfers.log" versions
> 5 size 20m;
> severity debug;
> print-time yes;
> print-category yes;
> print-severity yes;
> };
> category xfer-in { zone_transfers_log; };
> category xfer-out { zone_transfers_log; };
>
> channel query_log {
> file "/var/log/bind/queries/query.log" versions 10 size 50m;
> severity info;
> print-category yes;
> print-severity yes;
> print-time yes;
> };
> category config { query_log; };
> category queries { query_log; };
> };
> Thanks
>
> On Fri, Jun 9, 2023 at 10:57 PM Darren Ankney <darren.ankney at gmail.com> wrote:
> >
> > Hi Zoltan,
> >
> > Can you share your entire logging {} block? Maybe there will be some
> > clue there.
> >
> > Thank you,
> >
> > Darren Ankney
> >
> > On Fri, Jun 9, 2023 at 8:14 AM Kereszt Vezeték <hintalo68 at gmail.com> wrote:
> > >
> > > Hi Everybody !
> > >
> > > I have bind9 server with query logging setup.
> > > It work well, but all of query registration logged is /var/log/syslog file.
> > > Can I avoid that duplicated logging ? I would like see only separated log file.
> > > Related configuration ( debian11 )
> > >
> > > ---------------------------------------------------------------------------
> > > channel query_log {
> > > file "/var/log/bind/queries/query.log" versions 10 size 50m;
> > > severity info;
> > > print-category yes;
> > > print-severity yes;
> > > print-time yes;
> > > };
> > > category config { query_log; };
> > > category queries { query_log; };
> > > -----------------------------------------------------------------------------
> > >
> > > Thank You
> > > regards
> > > zoltan
> > > --
> > > Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
> > >
> > > ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information.
> > >
> > >
> > > bind-users mailing list
> > > bind-users at lists.isc.org
> > > https://lists.isc.org/mailman/listinfo/bind-users
> > --
> > Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
> >
> > ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information.
> >
> >
> > bind-users mailing list
> > bind-users at lists.isc.org
> > https://lists.isc.org/mailman/listinfo/bind-users
More information about the bind-users
mailing list