From owner-freebsd-questions@FreeBSD.ORG Fri Aug 5 19:01:40 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 73ECE106564A for ; Fri, 5 Aug 2011 19:01:40 +0000 (UTC) (envelope-from feld@feld.me) Received: from mwi1.coffeenet.org (unknown [IPv6:2607:f4e0:100:300::2]) by mx1.freebsd.org (Postfix) with ESMTP id 3E5D38FC14 for ; Fri, 5 Aug 2011 19:01:40 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=feld.me; s=blargle; h=In-Reply-To:Message-Id:From:Content-Transfer-Encoding:Mime-Version:Date:References:Subject:To:Content-Type; bh=yWCTVQcXzWf8mIEkKRzxB385mYRdlDOH3+QBcYzeQyo=; b=MwtgGVHMsnuEIyhLx69gkswp6lUizuhTm+qRalaDIGiKp8GKdSQFA1WkT2sF+hQXV9Q00jY6jMLKcwVfUvkzF8dR6+Spy8Uln+LVYKX7nkLwczLgepWpyJ0Mq6wSu9nZ; Received: from localhost ([127.0.0.1] helo=mwi1.coffeenet.org) by mwi1.coffeenet.org with esmtp (Exim 4.76 (FreeBSD)) (envelope-from ) id 1QpPhX-000AN2-8B for freebsd-questions@freebsd.org; Fri, 05 Aug 2011 14:04:56 -0500 Received: from feld@feld.me by mwi1.coffeenet.org (Archiveopteryx 3.1.4) with esmtpsa id 1312571089-1570-1569/5/2; Fri, 5 Aug 2011 19:04:49 +0000 Content-Type: text/plain; charset=utf-8; format=flowed; delsp=yes To: freebsd-questions@freebsd.org References: <4E3C1719.7030509@mykitchentable.net> <4E3C2779.9070508@mykitchentable.net> Date: Fri, 5 Aug 2011 14:01:32 -0500 Mime-Version: 1.0 Content-Transfer-Encoding: quoted-printable From: Mark Felder Message-Id: In-Reply-To: <4E3C2779.9070508@mykitchentable.net> User-Agent: Opera Mail/12.00 (FreeBSD) X-SA-Score: -1.0 Subject: Re: Help with Bind Weirdness & Logging X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Aug 2011 19:01:40 -0000 On Fri, 05 Aug 2011 12:25:13 -0500, Drew Tomlinson =20 wrote: > Any ideas on how to get Bind logging going? Here's how we do it. named.conf: logging { channel "my_syslog" { syslog daemon; severity info; //print-time yes; //print-severity yes; //print-category yes; }; // below added for bind logging graphs =20 http://www.cs.ait.ac.th/laboratory/monitor/bind/modif.shtml channel "querylog" { // this is in a chroot, so it's actually at =20 /var/named/var/log/query.log file "/var/log/query.log" versions 3 size 1m; }; category queries { querylog; }; // don't log things that aren't our fault: category lame-servers { null; }; category update { null; }; }; syslog.conf: *.notice;authpriv.none;kern.debug;lpr.info;mail.crit;news.err;daemon.none= =20 /var/log/messages daemon.* /var/log/daemon.log newsyslog.conf: /var/log/daemon.log 644 7 * @T00 JC This seems to work great for us. Logs are in /var/log/daemon.log and get = =20 rotated. Regards, Mark