[RPZ] DNS RPZ Logging
Vernon Schryver
vjs at rhyolite.com
Sun Jul 1 19:50:45 UTC 2012
> > From: Gaurav Kansal <gaurav.kansal at live.in>
>
> I configured the DNS RPZ in 2 Recursive Name Servers, one with
> RPZ zone as a Master and in the other one, with DNS RPZ zone as a slave.
>
> I used the same logging type in both the servers.
I bet that file or directory permissions or log configuration differ
on the two servers.
> logging {
> channel default_syslog {
> syslog local0;
> };
>
> channel query_logging {
> file "/var/log/dns-log/dnsquery" versions 20 size 100m;
> print-time yes;
> };
> category queries {
> query_logging;
> };
> };
Where is the `category rzp` statement?
I use statements like these to put RPZ logging into /etc/namedb/log/rpz :
options {
directory "/etc/namedb";
...
logging {
...
channel rpz { severity debug;
file "log/rpz" versions 3 size 10m;
...
};
...
category rpz { rpz; };
...
Vernon Schryver vjs at rhyolite.com
More information about the DNSfirewalls
mailing list