Polskie Forum Użytkowników Debiana

Polski portal użytkowników dystrybucji Debian GNU/Linux, dyskusje, artykuły, nowości, blog, porady, pomoc.
https://www.debian.pl/

Serwer DNS nie loguje zdarze

https://www.debian.pl/viewtopic.php?t=18549

Strona 1 z 1

Serwer DNS nie loguje zdarzeń w dziennikach

: 23 kwietnia 2010, 12:44
autor: czater
Skonfigurowałem server DNS na Debianie 5.04, opierając się na opisie
http://debian.linux.pl/content/177-ISC-BIND,niestety nie zapisuje mi się żadna zawartość w logach z działania serwera. Właścicielem plików dziennika w /var/lib/named/var/log/named/ jest użytkownik bind, zmieniłem w stosunku do opisu zawartość pliku /etc/dafault/rsyslogd ponieważ nie występuje w tej wersji Debiania już syslogd na:

Kod: Zaznacz cały

RSYSLOGD_OPTIONS="-a /var/lib/named/dev/log"
Zawartość pliku named.conf.options

Kod: Zaznacz cały

options {
    directory "/var/cache/bind";
    transfer-source * port 53;
    notify-source * port 53;
    // If there is a firewall between you and nameservers you want
    // to talk to, you might need to uncomment the query-source
    // directive below.  Previous versions of BIND always asked
    // questions using port 53, but BIND 8.1 and later use an unprivileged
    // port by default.

query-source port * ;

    // If your ISP provided one or more IP addresses for stable 
    // nameservers, you probably want to use them as forwarders.  
    // Uncomment the following block, and insert the addresses replacing 
    // the all-0's placeholder.



auth-nxdomain yes;    # conform to RFC1035

    // By default, name servers should only perform recursive domain
    // lookups for their direct clients.  If recursion is left open
    // to the entire Internet, your name server could be used to
    // perform distributed denial of service attacks against other
    // innocent computers.  For more information on DDoS recursion:
    // http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0987

    version "Microsoft DNS Server v1.5 (WinME)";
};

logging {
channel security_file { file "/var/log/named/security.log" versions 3 size 30m; severity dynamic; print-time yes; };
channel default_file { file "/var/log/named/default.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel general_file { file "/var/log/named/general.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel database_file { file "/var/log/named/database.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel security_file { file "/var/log/named/security.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel config_file { file "/var/log/named/config.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel resolver_file { file "/var/log/named/resolver.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel xfer-in_file { file "/var/log/named/xfer-in.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel xfer-out_file { file "/var/log/named/xfer-out.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel notify_file { file "/var/log/named/notify.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel client_file { file "/var/log/named/client.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel unmatched_file { file "/var/log/named/unmatched.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel queries_file { file "/var/log/named/queries.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel network_file { file "/var/log/named/network.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel update_file { file "/var/log/named/update.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel dispatch_file { file "/var/log/named/dispatch.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel dnssec_file { file "/var/log/named/dnssec.log" versions 3 size 5m; severity dynamic; print-time yes; };
channel lame-servers_file { file "/var/log/named/lame-servers.log" versions 3 size 5m; severity dynamic; print-time yes; };

category security { security_file; };
category default { default_file; };
category general { general_file; };
category database { database_file; };
category security { security_file; };
category config { config_file; };
category resolver { resolver_file; };
category xfer-in { xfer-in_file; };
category xfer-out { xfer-out_file; };
category notify { notify_file; };
category client { client_file; };
category unmatched { unmatched_file; };
category queries { queries_file; };
category network { network_file; };
category update { update_file; };
category dispatch { dispatch_file; };
category dnssec { dnssec_file; };
category lame-servers { lame-servers_file; };
};

 {

: 26 kwietnia 2010, 12:55
autor: hageri
Witam. Akurat sam męczę się z bindem, więc może coś razem wykombinujemy.
1. Czy to co pokazałeś jest dokładnie, co do znaku, to co masz w named.conf.options?
2. Czy bind startuje bez żadnych komunikatów i ostrzeżeń?
3. Pokaż co masz w daemon.log po restarcie binda.
4. Czy named-checkconf nie pokazuje błędów?

: 26 kwietnia 2010, 13:10
autor: czater
1. Tak, jest to dokładnie to w 100%
2. Bind startuje bez żadnych problemów.
4. Mam jeszcze małe błędy ale pracuję nad tym

Wykonałem polecenie:

Kod: Zaznacz cały

grep -r named /var/log/named
i okazało się że przyczyną jest kwestia uprawnień, tzn. właścicielem plików był root, grupa root, zmieniłem właściciela na bind i działa.

Kod: Zaznacz cały

/var/log/syslog:Apr 26 11:36:55 debian rsyslogd: Warning: backward compatibility layer added to following directive to rsyslog.conf: addunixlistensocket /var/lib/named/dev/log
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: starting BIND 9.5.1-P3 -u bind -t /var/lib/named
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: found 2 CPUs, using 2 worker threads
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: using up to 4096 sockets
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: loading configuration from '/etc/bind/named.conf'
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: max open files (1024) is smaller than max sockets (4096)
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: using default UDP/IPv4 port range: [1024, 65535]
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: using default UDP/IPv6 port range: [1024, 65535]
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: listening on IPv4 interface lo, 127.0.0.1#53
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: listening on IPv4 interface eth0, 195.187.79.3#53
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: automatic empty zone: 254.169.IN-ADDR.ARPA
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: automatic empty zone: D.F.IP6.ARPA
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: automatic empty zone: 8.E.F.IP6.ARPA
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: automatic empty zone: 9.E.F.IP6.ARPA
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: automatic empty zone: A.E.F.IP6.ARPA
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: automatic empty zone: B.E.F.IP6.ARPA
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: command channel listening on 127.0.0.1#953
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: command channel listening on ::1#953
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'default_file' file '/var/log/named/default.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'general_file' file '/var/log/named/general.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'database_file' file '/var/log/named/database.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'security_file' file '/var/log/named/security.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'config_file' file '/var/log/named/config.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'resolver_file' file '/var/log/named/resolver.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'xfer-in_file' file '/var/log/named/xfer-in.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'xfer-out_file' file '/var/log/named/xfer-out.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'notify_file' file '/var/log/named/notify.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'client_file' file '/var/log/named/client.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'unmatched_file' file '/var/log/named/unmatched.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'queries_file' file '/var/log/named/queries.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'network_file' file '/var/log/named/network.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'update_file' file '/var/log/named/update.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'dispatch_file' file '/var/log/named/dispatch.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'dnssec_file' file '/var/log/named/dnssec.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: logging channel 'lame-servers_file' file '/var/log/named/lame-servers.log': permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: isc_log_open '/var/log/named/general.log' failed: permission denied
/var/log/syslog:Apr 26 11:36:55 debian named[2013]: isc_log_open '/var/log/named/notify.log' failed: permission denied
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,63,96389)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,96390,578339)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,578340,12289724)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,12289788,12868064)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,12868128,24579449)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,24579513,30443174)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,30443238,35873144)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,35873208,36660329)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,36660393,72292499)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,63,96389)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,96390,578339)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,63,578339)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,63,578339)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,63,578339)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,12289788,12868064)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,12868128,24579449)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,24579513,30443174)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,30443238,35873144)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,35873208,36660329)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,35873208,36660329)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,36660393,72292499)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,578340,12289724)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,578340,5269319)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,578340,5269319)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,578340,5269319)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,578340,5269319)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,5269320,29286494)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,29286558,48821534)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,48821598,52725329)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,48821598,52725329)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,52725393,60532919)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,52725393,60532919)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,60532983,72292499)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,29286558,48821534)
/var/log/installer/partman :p arted_server: named_partition_is_virtual(=dev=sda,29286558,48821534)

: 26 kwietnia 2010, 13:20
autor: hageri
no to super, na samym końcu w named.conf.options masz '{' to raczej nie jest potrzebne, powodzenia

Pozdrawiam

: 26 kwietnia 2010, 14:11
autor: czater
Dziękuje, również życzę powodzenia.
Strefa czasowa UTC+02:00
Strona 1 z 1

Technologię dostarcza phpBB® Forum Software © phpBB Limited

Polski pakiet językowy dostarcza phpBB.pl