Re: logging query results

In article <[EMAIL PROTECTED]>, Mark Andrews <[EMAIL PROTECTED]> wrote: > Disk i/o is just glacially slow when compared to network > i/o. To get disk logging up to network speeds you need to > throw away a lots of it. Which suggests that having filtering built into the logging

Re: logging query results

On Tue, Dec 2, 2008 at 4:28 PM, Kevin Darcy <[EMAIL PROTECTED]> wrote: > Bill Larson wrote: > >> JINMEI Tatuya / 神明達哉 <[EMAIL PROTECTED]> said: >> >> >> >>> At Fri, 28 Nov 2008 10:08:34 -0800, >>> wes <[EMAIL PROTECTED]> wrote: >>> >>> >>> I would like to know if it's possible to log the outp

Re: logging query results

Disk i/o is just glacially slow when compared to network i/o. To get disk logging up to network speeds you need to throw away a lots of it. Mark -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET

Re: logging query results

n Darcy <[EMAIL PROTECTED]> wrote: From: Kevin Darcy <[EMAIL PROTECTED]> Subject: Re: logging query results To: [EMAIL PROTECTED] Date: Wednesday, December 3, 2008, 1:28 PM Bill Larson wrote: JINMEI Tatuya / 神明達哉 <[EMAIL PROTECTED]> said: At F

Re: logging query results

's roadmap, querylog optimization. fyi on that.. --- On Wed, 12/3/08, Kevin Darcy <[EMAIL PROTECTED]> wrote: > From: Kevin Darcy <[EMAIL PROTECTED]> > Subject: Re: logging query results > To: [EMAIL PROTECTED] > Date: Wednesday, December 3, 2008, 1:28 PM > Bill Larson

Re: logging query results

Bill Larson wrote: JINMEI Tatuya / [EMAIL PROTECTED]@C#:H(B <[EMAIL PROTECTED]> said: At Fri, 28 Nov 2008 10:08:34 -0800, wes <[EMAIL PROTECTED]> wrote: I would like to know if it's possible to log the output of each dns query. Do you mean the response to each query by "outpu

Re: logging query results

On Tue, 2008-12-02 at 15:55 -0700, Bill Larson wrote: > Query logging is a great idea, but OARC has already produced a very > functional "dnscap" which will capture all DNS traffic, queries and > responses, incoming and outgoing. Maybe this type of logging functionality > could be better relega

Re: logging query results

At Tue, 2 Dec 2008 15:55:45 MST, "Bill Larson" <[EMAIL PROTECTED]> wrote: > Adding functionality for for the purpose of better operations is one thing. > Including the capability of performing zone transfers inside BIND was a great > addition rather than having a separate "named-xfer" tool. Th

Re: logging query results

JINMEI Tatuya / [EMAIL PROTECTED]@C#:H(B <[EMAIL PROTECTED]> said: > At Fri, 28 Nov 2008 10:08:34 -0800, > wes <[EMAIL PROTECTED]> wrote: > > > I would like to know if it's possible to log the output of each dns query. > > Do you mean the response to each query by "output"? > > If so, there's

Re: logging query results

On Tue, Dec 2, 2008 at 2:09 PM, JINMEI Tatuya / 神明達哉 <[EMAIL PROTECTED]>wrote: > At Fri, 28 Nov 2008 10:08:34 -0800, > wes <[EMAIL PROTECTED]> wrote: > > > I would like to know if it's possible to log the output of each dns > query. > > Do you mean the response to each query by "output"? > > If so

Re: logging query results

At Fri, 28 Nov 2008 10:08:34 -0800, wes <[EMAIL PROTECTED]> wrote: > I would like to know if it's possible to log the output of each dns query. Do you mean the response to each query by "output"? If so, there's currently no such log messages regardless of log level. We may implement it in the f

Re: logging query results

On Mon, Dec 1, 2008 at 12:32 PM, Jeremy C. Reed <[EMAIL PROTECTED]> wrote: > On Mon, 1 Dec 2008, wes wrote: > > > The result I'm looking for is "10.1.1.44" and this string does not > appear in > > any of the logs at all. > > Search for 10.in-addr.arpa. instead. > Ok, I did that, but it only appea

Re: logging query results

On Mon, 1 Dec 2008, wes wrote: > The result I'm looking for is "10.1.1.44" and this string does not appear in > any of the logs at all. Search for 10.in-addr.arpa. instead. ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailm

Re: logging query results

ee tons and tons of log messages even just on >> startup of named. >> >> note that logging queries will significantly impact the query response >> rate of the server. its a no no for production. on the other hand, your >> tcpdump script sounds elegant... >> >>

Re: logging query results

Good point, I had only used rndc reload to activate the changes to the conf file. The changes definitely took effect at that point, as I could then see all the debug messages in the log. But, I tried a stop && start (had to use /etc/init.d/bind9 because rndc doesn't have a start command for some re

Re: logging query results

nscap -m q -e y -c 100 -w /path/file > > captures: > - queries only > - errors only > - after 100 packets where conditions are met > - write it to a file.. > > > Enjoy! > > --- On Sat, 11/29/08, ivan jr sy <[EMAIL PROTECTED]> wrote: > > > From: iva

Re: logging query results

.. > > > --- On Sat, 11/29/08, wes <[EMAIL PROTECTED]> wrote: > > > From: wes <[EMAIL PROTECTED]> > > Subject: logging query results > > To: bind-users@lists.isc.org > > Date: Saturday, November 29, 2008, 7:08 AM > > I would like to know if it's p

Re: logging query results

van jr sy <[EMAIL PROTECTED]> > Subject: Re: logging query results > To: bind-users@lists.isc.org, "wes" <[EMAIL PROTECTED]> > Date: Saturday, November 29, 2008, 7:56 AM > looks like an OK config for me. > - you should be able to view the name being queried and >

Re: logging query results

TED]> wrote: > From: wes <[EMAIL PROTECTED]> > Subject: logging query results > To: bind-users@lists.isc.org > Date: Saturday, November 29, 2008, 7:08 AM > I would like to know if it's possible to log the output > of each dns query. > I'd like to do this to catc

logging query results

I would like to know if it's possible to log the output of each dns query. I'd like to do this to catch failed queries so I can see what people are looking for, and not finding, and add it for them if it should be there. I recently lost my old dns server so I have to start from scratch. This is my