Frédéric Brière
2008-Jan-24 20:12 UTC
[Logcheck-devel] [PATCH] Added "journal file does not exist" rule for bind
This line is issued when first setting up a dynamic DNS zone; BIND will
then create a journal where it will log client updates.
Signed-off-by: Fr?d?ric Bri?re <fbriere at fbriere.net>
---
rulefiles/linux/ignore.d.server/bind | 1 +
1 files changed, 1 insertions(+), 0 deletions(-)
diff --git a/rulefiles/linux/ignore.d.server/bind
b/rulefiles/linux/ignore.d.server/bind
index 6fcb063..6ed06a0 100644
--- a/rulefiles/linux/ignore.d.server/bind
+++ b/rulefiles/linux/ignore.d.server/bind
@@ -6,5 +6,6 @@
^\w{3} [ :0-9]{11} [-._[:alnum:]]+ named\[[0-9]+\]: client [0-9.]{7,15}#[0-9]+:
view (localhost|any|slave): query: [-._[:alnum:]]+ IN
(CNAME|A6|AAAA|A|MX|PTR|TXT|NS|SOA|SSHFP) [-+](E?)$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ named\[[0-9]+\]: (client [.#[:digit:]]+:
)?notify question section contains no SOA$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ named\[[[:digit:]]+\]: client
[[:digit:].]+#[[:digit:]]+: query (\(cache\) )?'.*' denied$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ named\[[0-9]+\]: journal file
[-./_[:alnum:]]+ does not exist, creating it$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ named\[[0-9]+\]: client [.#[:digit:]]+:
updating zone '[-._[:alnum:]]+/IN': (adding an RR|deleting rrset) at
'phentex.dynamic.gxd.ca' A$
^\w{3} [ :0-9]{11} [._[:alnum:]-]+ named\[[0-9]+\]: dispatch 0x[[:xdigit:]]+:
shutting down due to TCP receive error: [[:digit:].]+#[[:digit:]]+: connection
reset$
--
1.5.3.8