[RPZ] DNS RPZ Logging
Gaurav Kansal
gaurav.kansal at live.in
Mon Jul 2 04:28:22 UTC 2012
Hi Vernon,
I am using Bind 9.8.1-P1
It is giving me an error, when i defined a RPZ category.
Jul 2 09:58:46 gaurav named[30496]: /etc/named.conf:45: undefined category: 'rpz'Jul 2 09:58:46 gaurav named[30496]: loading configuration: failureJul 2 09:58:46 gaurav named[30496]: exiting (due to fatal error)
What can be the issue?
Thanks and Regards,Gaurav Kansal
> Date: Sun, 1 Jul 2012 19:50:45 +0000
> From: vjs at rhyolite.com
> To: dnsrpz-interest at lists.isc.org; gaurav.kansal at live.in
> Subject: Re: [RPZ] DNS RPZ Logging
>
> > > From: Gaurav Kansal <gaurav.kansal at live.in>
> >
> > I configured the DNS RPZ in 2 Recursive Name Servers, one with
> > RPZ zone as a Master and in the other one, with DNS RPZ zone as a slave.
> >
> > I used the same logging type in both the servers.
>
> I bet that file or directory permissions or log configuration differ
> on the two servers.
>
> > logging {
> > channel default_syslog {
> > syslog local0;
> > };
> >
> > channel query_logging {
> > file "/var/log/dns-log/dnsquery" versions 20 size 100m;
> > print-time yes;
> > };
> > category queries {
> > query_logging;
> > };
> > };
>
>
> Where is the `category rzp` statement?
>
>
> I use statements like these to put RPZ logging into /etc/namedb/log/rpz :
>
> options {
> directory "/etc/namedb";
> ...
>
> logging {
> ...
> channel rpz { severity debug;
> file "log/rpz" versions 3 size 10m;
> ...
> };
> ...
> category rpz { rpz; };
> ...
>
>
> Vernon Schryver vjs at rhyolite.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.redbarn.org/pipermail/dnsfirewalls/attachments/20120702/47e472e6/attachment.htm>
More information about the DNSfirewalls
mailing list