Re: dns cache issue

OK, so this happen again, with link congestion. bind is caching the results as tested with no congestion, 78ms down to 1ms... BUT the issue with bind remain and logs show nothing wrong congested link lookup , tried in instant succession with a second or less between: google.com (like any other h

Re: BIND DNS Enable audit logs - Authoritative

> > On Jan 11, 2019, at 11:33 AM, Dave Warren wrote: > > On 2019-01-11 11:55, Kevin Darcy wrote: >> I don't believe there is any logging category for this, even when zones are >> enabled for Dynamic Update, in which case the versioning is done >> automatically. There used to be a "journalprint

Re: BIND DNS Enable audit logs - Authoritative

On 2019-01-11 11:55, Kevin Darcy wrote: I don't believe there is any logging category for this, even when zones are enabled for Dynamic Update, in which case the versioning is done automatically. There used to be a "journalprint" utility that one could run against the .jnl files to show the upd

Re: BIND DNS Enable audit logs - Authoritative

I don't believe there is any logging category for this, even when zones are enabled for Dynamic Update, in which case the versioning is done automatically. There used to be a "journalprint" utility that one could run against the .jnl files to show the update history. But, even if the journaling mec

RE: BIND DNS Enable audit logs - Authoritative

Daniel Dawalibi wrote: > > We edit our zones manually (not through panel interface), is it possible to > log DNS updates in this case? I would recommend using version control: git, mercurial, subversion, even RCS is better than nothing! Best time to start is about 25 years ago; second best time i

Re: repeated 16 hour interval spike in authoritative PTR lookups

Ttl values for the arpa space is 4 hours. It looks and feels like a concerted nmap scan of arpa space hosted on our authoritative servers triggered by a singular trigger. Different sets of authoritative servers hosting different arpa space are similarly seeing the same thing with an offset 16 hou

RE: BIND DNS Enable audit logs - Authoritative

> We edit our zones manually .. *cringe* No wonder you are looking for audit logging! Yikes. Outside of DDI specific solutions like Infoblox or Bluecat, you might want to check out Webmin. It logs all changes made via it's interface: https://doxfer.webmin.com/Webmin/Webmin_Actions_Log John

RE: BIND DNS Enable audit logs - Authoritative

Hello We edit our zones manually (not through panel interface), is it possible to log DNS updates in this case? Logging is already enabled but we are unable to track the updated zones in the logs The enabled category on the authoritative Master DNS server are "xfer-in", "security", "network", "d