It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda NextGen Firewall X

How to enable debug logging for DNS service

  • Type: Knowledgebase
  • Date changed: one year ago
Solution 00005281 

 
Scope:
This solution replies to:
- NG Firewall firmware versions 4.2.x, 5.0.x, 5.2.x
- netfence firmware versions 4.2.x

 
Symptoms:

How can debug logging be enabled for a DNS-service?


 

Solution:

Sometimes the dns-service is not chatty enough for further analysis.


Follow this steps to enable the debugging mode. 

1) The named.conf file has to be edited by hand.

vi /opt/phion/config/active/servers/<servername>/services/<dns-servicename>/named.conf


Replace these lines


logging

category "default" { "default_syslog"; };
};


    with the following lines:


logging {
category "default" { "default_syslog"; };
category "general" { "default_syslog"; };
category "database" { "default_syslog"; };
category "security" { "default_syslog"; };
category "config" { "default_syslog"; };
category "resolver" { "default_syslog"; };
category "xfer-in" { "default_syslog"; };
category "xfer-out" { "default_syslog"; };
category "notify" { "default_syslog"; };
category "client" { "default_syslog"; };
category "unmatched" { "default_syslog"; };
category "network" { "default_syslog"; };
category "update" { "default_syslog"; };
category "queries" { "default_syslog"; };
category "dispatch" { "default_syslog"; };
category "dnssec" { "default_syslog"; };
category "lame-servers" { "default_syslog"; };
};


2) Then restart the dns-service manually with the following command:

phionctrl module restart dns


Attention:
- Depending on number of requests, the logfile will grow very!
- With a every change in the service config the debug-logging will be disabled!



Link to This Page:
https://campus.barracuda.com/solution/50160000000IKbCAAW