query denied messages
Barry Margolin
barmar at genuity.net
Tue Jul 3 16:23:12 UTC 2001
In article <9hspli$ih7 at pub3.rc.vix.com>,
Jamie Krasnoo <jkrasnoo at socal.rr.com> wrote:
>
>I'm getting a lot of query denied messages.
>
>Jul 3 05:31:04 lexx named[11495]: client 206.112.62.10#4645: query denied
>
>I know I have my DNS configured correctly as far as my domains go. I'm able
>to query them from my cable connection. How do I set it up to report as to
>why the query was denied instead of having such a vague message?
You could use "ndc trace" to enable tracing the internal operations of
named. But finding these instances among all the activity may be difficult
if you don't know specifically what to search for.
Usually the reason for a query to be denied is that the client isn't in the
appropriate allow-query, allow-recursion, or allow-transfer access list.
--
Barry Margolin, barmar at genuity.net
Genuity, Burlington, MA
*** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
Please DON'T copy followups to me -- I'll assume it wasn't posted to the group.
More information about the bind-users
mailing list