Bind DNS loggin 設定

今天回家後, 竟然網路速度玩到一半後突然變慢 ! 機乎所有的page 都上不去!
check 了後發現是 udp 流量爆大 ! ...~\"~ ... udp 只有 ftp post mode 和 dns 會用到,
ftp 抽大流量比較有可能, 就先把 proftpd 關了, 結果還是一樣 !


只好把 udp port 53 限寬試試~... 就ok 了~... 還真是 bind 被抽大流量! ...
check 了後有幾個 ip 在 access我的server , but 跳太快了一時間也查不出來~...
m ~ .. 決定了, 把 dns logging 的方法找出來....

http://blog.jal.idv.tw/index.php?op=printView&articleId=52&blogId=1
有貼了他的語法.... 我加在 /etc/namedb/named.conf 裡!
不是在 option 裡ㄛ~.. 在最 top 層

logging {
channel default_log {
file \"/var/log/named/dns-default.log\" versions 10 size 20m;
severity info;
};

channel lamer_log {
file \"/var/log/named/dns-lamer.log\" versions 3 size 10m;
severity info;
print-severity yes;
print-time yes;
print-category yes;
};

channel query_log {
file \"/var/log/named/dns-query.log\" versions 10 size 10m;
severity info;
};

channel security_log {
file \"/var/log/named/dns-security.log\" versions 3 size 1m;
severity info;
print-severity yes;
print-time yes;
print-category yes;
};

category lame-servers { lamer_log; };
category security{ security_log;};
category queries { query_log;};
category default {default_log;};

};

Share your vote!


Do you like this post?
  • Fascinated
  • Happy
  • Sad
  • Angry
  • Bored
  • Afraid

Leave a Reply

Your email address will not be published. Required fields are marked *


Please help to input verification code