DNS Cluster Bind9
DNS Cluster Bind9
Непонятка в логах на slave:
02-Aug-2010 02:11:14.793 zone wow.md/IN: refresh: retry limit for master 92.115.176.50#53 exceeded (source 0.0.0.0#0)
02-Aug-2010 08:01:08.174 zone wow.md/IN: refresh: retry limit for master 92.115.176.50#53 exceeded (source 0.0.0.0#0)
02-Aug-2010 12:15:49.438 zone wow.md/IN: refresh: retry limit for master 92.115.176.50#53 exceeded (source 0.0.0.0#0)
02-Aug-2010 12:20:25.990 zone wow.md/IN: refresh: failure trying master 92.115.176.50#53 (source 0.0.0.0#0): operation canceled
05-Aug-2010 11:15:24.907 zone wow.md/IN: refresh: retry limit for master 109.185.154.112#53 exceeded (source 0.0.0.0#0)
05-Aug-2010 11:20:03.909 zone wow.md/IN: refresh: retry limit for master 109.185.154.112#53 exceeded (source 0.0.0.0#0)
05-Aug-2010 11:22:03.908 zone wow.md/IN: refresh: retry limit for master 109.185.154.112#53 exceeded (source 0.0.0.0#0)
05-Aug-2010 11:25:48.908 zone wow.md/IN: refresh: retry limit for master 109.185.154.112#53 exceeded (source 0.0.0.0#0)
05-Aug-2010 11:33:40.908 zone wow.md/IN: refresh: retry limit for master 109.185.154.112#53 exceeded (source 0.0.0.0#0)
05-Aug-2010 11:41:17.600 zone wow.md/IN: refresh: skipping zone transfer as master 109.185.154.112#53 (source 0.0.0.0#0) is unreachable (cached)
Оказывается – из-за firewall между master/slave.
Forwarding source address is [0.0.0.0].53
CATEGORY: default
SEVERITY: info
PAGE: 163
FURTHER INFO:
Indicates that your name server is sending queries from INADDR_ANY (i.e., from whichever network interface the kernel chooses based on the routing table), and from port 53. In other words, 0.0.0.0 denotes the wildcard IP address so the OS fills in the source address of the chosen interface.
This message occurs at startup or reload time. By default, BIND 8 will use a random, non-privileged port when querying another name server unless you specify one in the named.conf file with query-source address * port 53; options substatement.
http://www.menandmice.com>knowledgehub/bindlogmsgs>default.aspx
Исправил добавив
query-source address * port 53;
в /chroot/bind/etc/bind/nam>ed.conf.options
на Slave.
Хотя можно было по-идеи открыть порты от 1024…
—
Следующий косяк с логами:
В Debian lenny Bind9 by default пишет логи в syslog
/var/log/syslog
Пришлось научить его создавать собственные логи:
/etc/bind/named.conf.opti>ons
logging {
channel default_file { file “default.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel general_file { file “general.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel database_file { file “database.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel security_file { file “security.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel config_file { file “config.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel resolver_file { file “resolver.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel xfer-in_file { file “xfer-in.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel xfer-out_file { file “xfer-out.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel notify_file { file “notify.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel client_file { file “client.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel unmatched_file { file “unmatched.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel queries_file { file “queries.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel network_file { file “network.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel update_file { file “update.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel dispatch_file { file “dispatch.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel dnssec_file { file “dnssec.log” versions 3 size 5m; severity dynamic; print-time yes; };
channel lame-servers_file { file “lame-servers.log” versions 3 size 5m; severity dynamic; print-time yes; };
category default { default_file; };
category general { general_file; };
category database { database_file; };
category security { security_file; };
category config { config_file; };
category resolver { resolver_file; };
category xfer-in { xfer-in_file; };
category xfer-out { xfer-out_file; };
category notify { notify_file; };
category client { client_file; };
category unmatched { unmatched_file; };
category queries { queries_file; };
category network { network_file; };
category update { update_file; };
category dispatch { dispatch_file; };
category dnssec { dnssec_file; };
category lame-servers { lame-servers_file; };
};
Плюс делаем symlink
ln -s /var/lib/named/var/cache/>bind var/log/bind
Теперь все логи bind аккуратно пишутся:
frt:~# ls -lh /var/log/bind/
total 20K
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 client.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 config.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 database.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 default.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 dispatch.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 dnssec.log
-rw-r–r– 1 bind bind 842 2010-08-05 16:32 general.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 lame-servers.log
-rw-r–r– 1 bind bind 242 2010-08-05 16:32 network.log
-rw-r–r– 1 bind bind 178 2010-08-05 16:32 notify.log
-rw-r–r– 1 bind bind 6.2K 2010-08-05 17:21 queries.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 resolver.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 security.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 unmatched.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 update.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 xfer-in.log
-rw-r–r– 1 bind bind 0 2010-08-05 16:32 xfer-out.log
А так же :
Дневной блок новостей
История математики: Вавилон и Египет
Самой древней математической деятельностью был счет. Счет был необходим, чтобы следить за поголовьем скота и вести торговлю. Некоторые первобытные племена подсчитывали количество предметов, сопоставляя им различные части тела, главным образом, пальцы рук и ног. Наскальный рисунок, сохранившийся до наших времен от каменного века, изображает число 35 в виде серии выстроенных в ряд 35 палочек-пальцев.
Sirius XM SkyDock автокомплект с FM для iPhone
