[nsd-users] Logfile/verbosity and master/slave

Matthijs Mekking matthijs at NLnetLabs.nl
Thu Dec 11 09:22:57 UTC 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Lew,

NSD does not do that for general queries. It does give you BIND-like
statistics about this, but they only show you how many times that
occurred, nothing about the query initiator.

I am not to keen about putting this type of logging in-server and I
agree with Ant and Wouter that you should tcpdump or something to
retrieve these queries.

Kind regards,

Matthijs Mekking
NLnet Labs


Lew Payne wrote:
> Wouter and Arnt - Thank you for your answers to my previous questions.
> 
> So far, nsd (3.2.0) is behaving nicely, with roughly 200 zones that it
> is authoritative for.
> 
> Being able to import BIND8 zone files was a big bonus, as is having a
> CLI (nsdc).
> 
> Can you tell me if nsd logs erroneous or broken queries?  For example;
> queries for non-authoritative domains, malformed queries (common with
> exploit scripts), and queries for non-existent sub-domains (within our
> authoritative zone - NXDOMAIN)?  These are all very useful for
> security purposes, and I (used to, until I switched) use them to feed
> a daemon that tracks them and takes evasive action when necessary (via
> ipfw radix table entries).
> 
> Is there any chance of getting this type of logging, at a certain
> verbosity setting?
> 
> Regards,
> Lew Payne
> _______________________________________________
> nsd-users mailing list
> nsd-users at NLnetLabs.nl
> http://open.nlnetlabs.nl/mailman/listinfo/nsd-users

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFJQNvxIXqNzxRs6egRAjoPAJ9HWwQnXHwXGlFiW2GPBJDoqxy8FQCfe9fi
qobuh16Ubc3XHBsVMLceJf0=
=CLVv
-----END PGP SIGNATURE-----



More information about the nsd-users mailing list