bind-users April 2010 archive
Main Archive Page > Month Archives  > bind-users archives
bind-users: Re: logging forwarding reqs

Re: logging forwarding reqs

From: Gregory Hicks <ghicks_at_nospam>
Date: Thu Apr 15 2010 - 19:11:16 GMT

> Date: Thu, 15 Apr 2010 14:25:35 -0400
> Subject: Re: logging forwarding reqs
> From: Jonathan Reed <>
> To:
> But I am still unable to determine if those reqs are asking the
> forwarders.
> The forwarders are all Windows boxes which I dont have rights to
> access. Still hoping there is something within bind9 that can say
> the req went to fwd'er.

Since you don't have access to the Windows boxen, it seems to me that
this is a candidate for the "old sniff the firewall" trick.

Sniff the DNS traffic on the internal facing connection of your
firewall (you DO have a firewall, don't you?) and see which IP
addresses the DNS requests are originating from. If from your Windows
boxen, then the forwarding is working correctly. (You ARE getting dns
requests resolved on the non-windows clients are you not?)

If not from the Windows boxen, then there is an error in your setup.

Gregory Hicks

Gregory Hicks | Principal Systems Engineer
                                        | Direct: 408.569.7928

People sleep peaceably in their beds at night only because rough men
stand ready to do violence on their behalf -- George Orwell

The price of freedom is eternal vigilance. -- Thomas Jefferson

"The best we can hope for concerning the people at large is that they
be properly armed." --Alexander Hamilton

bind-users mailing list