nsd users - Aug 2009 - Basic Logging Support Via Syslog

I think I brought this up several years ago...

I'd love to see basic logging support in nsd. ?Namely, the use of
syslog calls to facilitate logging of basic data (request IP, query
type, host name if any), especially for FAILED queries (ones that are
NXDOMAIN). ?Looking at a log of failed queries tells you a lot about
possible configuration errors (especially if migrating) and provides
valuable insight into possible security issues (probes, etc).

-Lew Payne

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Lew,

You may already have considered this, but:
tcpdump -vv udp port 53 and "udp[11] & 0xf == 3"
which prints out all nxdomains passing the server,
this is not good enough for that purpose?

Best regards,
   Wouter


On 08/31/2009 07:05 PM, Lew Payne wrote:
> I think I brought this up several years ago...
> 
> I'd love to see basic logging support in nsd.  Namely, the use of
> syslog calls to facilitate logging of basic data (request IP, query
> type, host name if any), especially for FAILED queries (ones that are
> NXDOMAIN).  Looking at a log of failed queries tells you a lot about
> possible configuration errors (especially if migrating) and provides
> valuable insight into possible security issues (probes, etc).
> 
> -Lew Payne
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iEYEARECAAYFAkqcyvMACgkQkDLqNwOhpPjpzwCggNEX9VNtqE/GrqdJlHVJ57ij
D+EAn2p587PKXRRqVmTJvdP1Vo/o/HnX
=WeMu
-----END PGP SIGNATURE-----