[nsd-users] Logfile/verbosity and master/slave
Matthijs Mekking
matthijs at NLnetLabs.nl
Thu Dec 11 09:22:57 UTC 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi Lew,
NSD does not do that for general queries. It does give you BIND-like
statistics about this, but they only show you how many times that
occurred, nothing about the query initiator.
I am not to keen about putting this type of logging in-server and I
agree with Ant and Wouter that you should tcpdump or something to
retrieve these queries.
Kind regards,
Matthijs Mekking
NLnet Labs
Lew Payne wrote:
> Wouter and Arnt - Thank you for your answers to my previous questions.
>
> So far, nsd (3.2.0) is behaving nicely, with roughly 200 zones that it
> is authoritative for.
>
> Being able to import BIND8 zone files was a big bonus, as is having a
> CLI (nsdc).
>
> Can you tell me if nsd logs erroneous or broken queries? For example;
> queries for non-authoritative domains, malformed queries (common with
> exploit scripts), and queries for non-existent sub-domains (within our
> authoritative zone - NXDOMAIN)? These are all very useful for
> security purposes, and I (used to, until I switched) use them to feed
> a daemon that tracks them and takes evasive action when necessary (via
> ipfw radix table entries).
>
> Is there any chance of getting this type of logging, at a certain
> verbosity setting?
>
> Regards,
> Lew Payne
> _______________________________________________
> nsd-users mailing list
> nsd-users at NLnetLabs.nl
> http://open.nlnetlabs.nl/mailman/listinfo/nsd-users
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFJQNvxIXqNzxRs6egRAjoPAJ9HWwQnXHwXGlFiW2GPBJDoqxy8FQCfe9fi
qobuh16Ubc3XHBsVMLceJf0=
=CLVv
-----END PGP SIGNATURE-----
More information about the nsd-users
mailing list