Skip to content

Instantly share code, notes, and snippets.

@meoso

meoso/.named_bind9_logging.md

Last active April 26, 2017 18:14
Show Gist options
  • Save meoso/d5c053c66d051d2da4519cae9ab7ce4b to your computer and use it in GitHub Desktop.
Save meoso/d5c053c66d051d2da4519cae9ab7ce4b to your computer and use it in GitHub Desktop.
Download ZIP
Raw
.named_bind9_logging.md

named bind9 logging configs

Raw
named.conf
#/var/named/chroot/etc/named.conf
options {
#[...] all your configs
directory "/var/named";
#[...] all your configs
}
logging {
channel default_file {
file "log/default.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel general_file {
file "log/general.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel database_file {
file "log/database.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel security_file {
file "log/security.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel config_file {
file "log/config.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel resolver_file {
file "log/resolver.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel xfer-in_file {
file "log/xfer-in.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel xfer-out_file {
file "log/xfer-out.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel notify_file {
file "log/notify.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel client_file {
file "log/client.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel unmatched_file {
file "log/unmatched.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel queries_file {
#personal pref: choose a large filesize and let logrotate cycle it before it reaches such size
file "log/queries.log" versions 1 size 1g;
severity dynamic;
print-time yes;
};
channel network_file {
file "log/network.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel update_file {
file "log/update.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel dispatch_file {
file "log/dispatch.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel dnssec_file {
file "log/dnssec.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
channel lame-servers_file {
file "log/lame-servers.log" versions 3 size 5m;
severity dynamic;
print-time yes;
};
category default { default_file; };
category general { general_file; };
category database { database_file; };
category security { security_file; };
category config { config_file; };
category resolver { resolver_file; };
category xfer-in { xfer-in_file; };
category xfer-out { xfer-out_file; };
category notify { notify_file; };
category client { client_file; };
category unmatched { unmatched_file; };
category queries { queries_file; };
category network { network_file; };
category update { update_file; };
category dispatch { dispatch_file; };
category dnssec { dnssec_file; };
category lame-servers { lame-servers_file; };
};
#[...] all your configs
Raw
named.rotate
#/etc/logrotate.d/named.rotate
#[...] existing configs
/var/named/chroot/var/named/log/*.log {
missingok
notifempty
daily
create
rotate 15
# mail user@dom.tld #email logs about to be cycled out of existence
dateext
compress
# delaycompress #skip compression until next logrotate
sharedscripts
postrotate
/usr/bin/systemctl reload named.service > /dev/null 2>&1 || true
/usr/bin/systemctl reload named-chroot.service > /dev/null 2>&1 || true
/usr/bin/systemctl reload named-sdb.service > /dev/null 2>&1 || true
/usr/bin/systemctl reload named-sdb-chroot.service > /dev/null 2>&1 || true
/usr/bin/systemctl reload named-pkcs11.service > /dev/null 2>&1 || true
endscript
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment