Prometheus and Grafana : Monitor BIND DNS server

 1.Pre-requisites- BIND need to have been build with libxml2 support# named -V | grep libxml22.Installed Bind Prometheus Exporter- Download the latest release of bind_exporter binary:# curl -s https://api.github.com/repos/prometheus-community/bind_exporter/releases/latest | grep browser_download_url | grep linux-amd64 |  cut -d '"' -f 4 | wget -qi -# tar xvf bind_exporter*.tar.gz# sudo mv...

Read More

BIND : DNS Issue #5

 Issue:dnssec: info: validating 83.0.11.10.in-addr.arpa/PTR: bad cache hit (10.in-addr.arpa/DS) lame-servers: info: broken trust chain resolving '83.0.11.10.in-addr.arpa/PTR/IN': 8.8.8.8#53 dnssec: info: validating 65.0.11.10.in-addr.arpa/PTR: bad cache hit (10.in-addr.arpa/DS) lame-servers: info: broken trust chain resolving '65.0.11.10.in-addr.arpa/PTR/IN': 8.8.8.8#53 dnssec: info: validating...

Read More

BIND : DNS Issue #4

1. Issue - resolving a local domain name to an IP address fails with:> 192.168.1.3Server:         127.0.0.1Address:        127.0.0.1#533.1.168.192.in-addr.arpa      name = server.domain.site.>  server.domain.siteServer:         127.0.0.1Address:       ...

Read More

BIND : WARNING: key file (/etc/bind/rndc.key) exists, but using default configuration file (/etc/bind/rndc.conf)

Solutions: 1. Make sure that the key in /etc/bind/rndc.key is the same as in /etc/bind/rndc.conf 2. Copy rndc.conf key to rndc.key 3. Move /etc/bind/rndc.conf to any another location, for example /temp 4. Reload the rndc utility: #rndc reload Source : https://support.plesk.com/hc/en-us/articles/115000153813-Warnings-appear-in-syslog-key-file-exists-but-using-default-configuration-file...

Read More

BIND : DNS Issue #3

Issue : 16-Oct-2018 12:16:53.225 general: error: dumping master file: /etc/bind/tmp-rsY5WLIgLf: open: file not found  Solutions:   Edit : /etc/apparmor.d/usr.sbin.named Add : /etc/bind/* rw,  Source: https://ubuntuforums.org/showthread.php?t=108947...

Read More

BIND : DNS Issue

Issue 1 : isc_stdio_open '/var/log/named/named_security.log' failed: permission denied Solutions  :chown -R bind:root /var/log/namedchmod -R 775 /var/log/named -------------------------------------------------------------------------------------------------------------- Issue 2 : "open: permission denied" upon zone transfer Solutions : Edit #/etc/apparmor.d/usr.sbin.named Add / Edit this...

Read More

BIND : Graphing DNS queries with bindgraph

source :https://slaskdot.org/2013/08/22/graphing-dns-queries-with-bindgraph/http://www.cyberciti.biz/faq/freebsd-bind-named-bindgraph-installtion-configuration/ https://slaskdot.org/2013/08/22/graphing-dns-queries-with-bindgraph/ http://opentodo.net/2012/09/monitoring-dns-queries-with-bindgra...

Read More

BIND : Enable statistics

Error : WARNING: key file (/etc/bind/rndc.key) exists, but using default configuration file (/etc/bind/rndc.conf)Solution:1. Add this statement statistics-file "/var/cache/bind/named.stats"; to /etc/bind/named.conf2.Remove or rename rndc.conf in /etc/bind3. Add the following to /etc/bind/named.confinclude "/etc/bind/rndc.key";controls {inet 127.0.0.1 port 953allow { 127.0.0.1; } keys { "rndc-key";...

Read More

BIND Issue : Slave DNS refused notify from non-master

http://benjamin.sonntag.fr/a37-named_zone_sonntag_eu_org_refused_notify_from_non-master.h...

Read More

BIND : DNS Issue #1

Q:Why do I get errors like "dns_zone_load: zone foo/IN: loading master file bar: ran out of space"?A:This is often caused by TXT records with missing close quotes. Check that all TXT records containing quoted strings have both open and close quotes.Source : http://www.bind9.net/BIND-...

Read More