Logging queries and answers
Alan Clegg
alan at clegg.com
Thu Oct 6 15:59:55 UTC 2011
On 10/6/2011 7:27 AM, 风河 wrote:
> On Thu, Oct 6, 2011 at 4:32 PM, Job <Job at colliniconsulting.it> wrote:
>> Hello Bind-Users ML,
>>
>> is there a way, a patch or something else, in order to log:
>>
>> - date/time
>> - client
>> - request (es www.site.com)
>> - reply (es. 1.1.1.1)
>>
>> in a file, without using debug log format, which writes lots of
>> lines for a query?
> Have you read the BIND logging clause:
> http://www.zytrax.com/books/dns/ch7/logging.html
The issue here is that the logging in BIND does not contain the
responses sent, only the questions asked (and there is no logging that
tells if an answer was provided!)
There are a number of ways you can extract this information, but all of
them require external applications.
Judicious use of "tcpdump" or "wireshark" will provide what you want.
If you want pretty graphs, I've enjoyed DSC over the years
(http://dns.measurement-factory.com/tools/dsc/) and can't wait for the
"next generation" of it to show up.
AlanC
--
alan at clegg.com | aclegg at infoblox.com
1.919.355.8851
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 260 bytes
Desc: OpenPGP digital signature
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20111006/85dffb49/attachment.bin>
More information about the bind-users
mailing list