BIND 9 isn’t setup to log these. They will fall under the stats counter mismatch but that also captures (some) duplicate responses and late responses. This filters out is/address pairs that named is not expecting. The question section is tested later.
Dig will report these so you can test servers that you believe are broken. -- Mark Andrews > On 2 Sep 2020, at 05:25, Andreas Ott <[email protected]> wrote: > > > > >> On Mon, Aug 31, 2020 at 8:00 PM P Vixie <[email protected]> wrote: >> [...] the observation that something >> bad is not happening to somebody doesn't mean it's not happening to anybody. > > May I please ask an operational question to experts: though I am only running > a small number of authoritative and recursive servers, I am coming up short > looking up what logging I need to turn on in BIND 9.16 and what logged > strings I need to parse out to see responses coming from a different IP? I > have various log channels enabled per the BIND logging "FAQ" but either I am > missing config bits or the problem does not occur (on my servers). This is in > a network lab setup and I am able to share data. > > Thanks, andreas > _______________________________________________ > dns-operations mailing list > [email protected] > https://lists.dns-oarc.net/mailman/listinfo/dns-operations
_______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations
