<div dir="ltr"><span class="Apple-style-span" style="border-collapse: collapse; ">This might be obvious.. but did you try query-logging=yes?<div><br></div><div>I'm not 100% sure if that would do it.. not an expert on the config file yet, but that seems pretty straightforward. </div>
<div><br></div><div>Then again, it's been 6 days since you posted your question, so maybe you already figured it out by now :) Let me know!</div><div><br></div><div>Chet</div></span><br><div class="gmail_quote">On Fri, Jul 11, 2008 at 5:42 PM, marty <<a href="mailto:marty@goodoldmarty.com">marty@goodoldmarty.com</a>> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">Hi all,<br>
I have a question.<br>
<br>
You guys always like a lot of info before you answer.<br>
I could dump pages of it, but you would all gag and I but would probably get<br>
arrested for indecent exposure as well.<br>
<br>
Hardware is Intel PD and higher. 1G memory is all I want.<br>
What dist am I on. BubbaCanBuildLinux Linux. (My personal source build)<br>
What kernel? Depends...but always most recent I can work with. 2.6.25.xx<br>
Gcc-4.2.1 binutils-2.17 glibc-2.5.1 Grsecurity Pax much more...<br>
Static Linking and Textrels are never legit here so I must fix a lot of bad code<br>
and I rarely share my questionable patches, out of kindness:)<br>
<br>
I have built and am running the latest PowerDNS Authoratative Server from SVN as<br>
of today. Pretty nice. I Didn't want or need the recursor as it would only<br>
present a conflict with my private zones on another installed DNS server. I just<br>
used the pdns proxy to redirect local queries to my ISP. It works...<br>
<br>
That info should narrow the playing field:)<br>
<br>
Where are the stinking access logs? I am at log level=9 as directed by the docs,<br>
and have a discrete file on local0. Notify and AXFR info is logged but no udp<br>
is ever logged except for errors. I will append what pdns says to this email.<br>
But: I get nothing to document client access and my firewall shows I am getting<br>
a lot of it. So do the stats.<br>
<br>
For the past year I have used a very personally hacked version of MyDNS, which<br>
would log every single access. Ancient program but made me very aware of how<br>
many of these dirtballs were wasting my bandwidth for their own purposes.<br>
I constantly have marketing monkeys (AKA: Spammers) and hackers hitting every<br>
zone for MX and A. Then I get crawled, poked, and prodded at my expense.<br>
And then they send their junk mail. 1..2..3 Always adds adds up to minus-1.<br>
<br>
What about forensics in the case of enterprise systems? Yes, logging all access<br>
IS very, very CPU intense, and certainly not advised in all cases.<br>
I personally want to see "What" queries are being made of my servers so I can<br>
modify my firewall to get rid of specific undesirable traffic. I should be able<br>
to turn this on and off at will but I don't think it is even in the code. If it<br>
is, it is not in the docs yet and I don't have a clue.<br>
<br>
Marty B.<br>
<br>
PS:<br>
Jul 11 13:10:29 Computer pdns[1786]: PowerDNS 3.0-svn (C) 2001-2007 PowerDNS.COM<br>
BV (Jul 11 2008, 12:19:04, gcc 4.2.1) starting up<br>
Jul 11 13:10:29 Computer pdns[1786]: PowerDNS comes with ABSOLUTELY NO WARRANTY.<br>
This is free software, and you are welcome to redistribute it according to the<br>
terms of the GPL version 2.<br>
Jul 11 13:10:29 Computer pdns[1786]: Set effective group id to 4101<br>
Jul 11 13:10:29 Computer pdns[1786]: Set effective user id to 4101<br>
Jul 11 13:10:29 Computer pdns[1786]: DNS Proxy launched, local port 50005,<br>
remote <a href="http://127.0.0.1:53" target="_blank">127.0.0.1:53</a><br>
Jul 11 13:10:29 Computer pdns[1786]: Master/slave communicator launching<br>
Jul 11 13:10:29 Computer pdns[1786]: Creating backend connection for TCP<br>
Jul 11 13:10:29 Computer pdns[1786]: gmysql Connection succesful<br>
Jul 11 13:10:29 Computer pdns[1786]: gmysql Connection succesful<br>
Jul 11 13:10:29 Computer pdns[1786]: About to create 5 backend threads for UDP<br>
Jul 11 13:10:29 Computer pdns[1786]: gmysql Connection succesful<br>
Jul 11 13:10:29 Computer pdns[1786]: All slave domains are fresh<br>
Jul 11 13:10:29 Computer pdns[1786]: No master domains need notifications<br>
Jul 11 13:10:29 Computer pdns[1786]: gmysql Connection succesful<br>
Jul 11 13:10:29 Computer last message repeated 3 times<br>
Jul 11 13:10:29 Computer pdns[1786]: Done launching threads, ready to distribute<br>
questions<br>
<font color="#888888"><br>
<br>
<br>
<br>
--<br>
Electile Dysfunction : the inability to become aroused over any of the<br>
choices for President put forth by either party in the 2008 election.<br>
<br>
</font><br>_______________________________________________<br>
Pdns-users mailing list<br>
<a href="mailto:Pdns-users@mailman.powerdns.com">Pdns-users@mailman.powerdns.com</a><br>
<a href="http://mailman.powerdns.com/mailman/listinfo/pdns-users" target="_blank">http://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br>
<br></blockquote></div><br><br clear="all"><br>-- <br>----------------------------------------<br>chet nichols III<br><a href="mailto:chet.nichols@gmail.com">chet.nichols@gmail.com</a><br>aim: chet / twitter: chet<br><a href="http://chetnichols.org">http://chetnichols.org</a><br>
----------------------------------------
</div>