logging on bind 9
Jim Reid
jim at rfc1035.com
Tue Feb 22 05:29:27 UTC 2005
>>>>> "Kurt" == Boyack, Kurt <Kurt.Boyack at pyxis.com> writes:
Kurt> =20 You can do this without modifying named.conf. All you
Kurt> have to do is run "rndc querylog". By default it will log
Kurt> queries to syslog.
This is true, However logging via syslog is not a good idea if the
server gets lots of queries: printf() to a file is more efficient than
syslog() to a socket, do a process switch then have syslogd printf()
to a file and switch back to the name server process. And if syslog is
sending stuff over the net, syslogd will do a reverse lookup of the
client's source address which could trigger yet another query that
gets logged via syslog.... Oh and you may want the query logs to be
kept separated from the regular name server logs about zone transfers,
reloads and so on.
More information about the bind-users
mailing list