query (cache) denied messages
blrmaani
blrmaani at gmail.com
Sun Apr 27 17:07:48 UTC 2008
I have two name servers - Lets call it NS1 and NS2. NS1 is
authoritative and NS2 is cache-only.
The logs are seen on NS1's syslog.
I also tried using category lame-servers {null; }; to suppress the
messages with NO luck.
NS1's named.conf is something like this:
options {
recursion no;
};
zone "supportedzone1" {
allow-query {blah; };
};
// Root zone is commented out as per response requirement. db.root is
unused
// zone "." { ... }
NS2's named.conf is something like this:
options {
recursion yes;
};
zone "." {
file "db.root";
};
// Contents of db.root on NS2 is as follows
<SOA BLOCK for . zone> (
)
NS NS1
NS1 A 1.2.3.4
On Apr 25, 1:00 pm, JINMEI Tatuya / 神明達哉 <Jinmei_Tat... at isc.org>
wrote:
> At Thu, 24 Apr 2008 18:55:27 -0700 (PDT),
>
> blrmaani <blrma... at gmail.com> wrote:
> > I upgraded to BIND 9.3.2 from BIND 9.2 recently and started seeing
> > these messages in syslog. These message are filling up my syslog.
>
> > client A.B.C.D#yyyy : query (cache) 'blahblah/A/IN' denied
>
> > My DNS server is configured as Authoritative Name Server with
> > recursion=no.
>
> > I can't afford to change my named.conf now. Can I fix using some
> > logging
> > category?
>
> Can you show your named.conf (not obfuscating specific details such as
> IP addresses and zone names as much as possible)?
>
> ---
> JINMEI, Tatuya
> Internet Systems Consortium, Inc.
More information about the bind-users
mailing list