Recursive queries

[rally]

DirectAdmin 1.42.1
OS CentOS 6.0 (32bit)

I find in Log files: /var/log/messages

Dec 27 23:13:52 vps named[30529]: client 91.224.160.142#53: query (cache) 'ripe.net/ANY/IN' denied
Dec 27 23:13:52 vps named[30529]: client 91.224.160.142#53: query (cache) 'ripe.net/ANY/IN' denied
Dec 27 23:13:53 vps named[30529]: client 91.224.160.142#53: query (cache) 'ripe.net/ANY/IN' denied
Dec 27 23:13:53 vps named[30529]: client 91.224.160.142#53: query (cache) 'ripe.net/ANY/IN' denied
Dec 27 23:13:53 vps named[30529]: client 91.224.160.142#53: query (cache) 'ripe.net/ANY/IN' denied
Dec 27 23:13:53 vps named[30529]: client 91.224.160.142#53: query (cache) 'ripe.net/ANY/IN' denied
Dec 27 23:13:53 vps named[30529]: client 91.224.160.142#53: query (cache) 'ripe.net/ANY/IN' denied
Dec 27 23:13:54 vps named[30529]: client 91.224.160.142#53: query (cache) 'ripe.net/ANY/IN' denied
Dec 27 23:13:54 vps named[30529]: client 91.224.160.142#53: query (cache) 'ripe.net/ANY/IN' denied

This is my file named.conf

//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//

options {

	//listen-on port 53 { 127.0.0.1; };
	//listen-on-v6 port 53 { ::1; };
	directory 	"/var/named";
	dump-file 	"/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
	//allow-query     { localhost; };
	recursion no;

	dnssec-enable yes;
	dnssec-validation yes;
	dnssec-lookaside auto;

	/* Path to ISC DLV key */
	bindkeys-file "/etc/named.iscdlv.key";

	managed-keys-directory "/var/named/dynamic";
};

logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};

zone "." IN {
	type hint;
	file "named.ca";
};

include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";

zone ..............

thanks for your help

 

[zEitEr]

Hello,

And what is your questions? Do you want to allow recursive queries? Or what?

 

[rally]

I want to avoid this:

Dec 27 23:13:52 vps named[30529]: client 91.224.160.142#53: query (cache) 'ripe.net/ANY/IN' denied

thanks

 

[zEitEr]

Well, it can be several ways:

1. with allowing recursive queries to your DNS server.
2. with completely disable DNS on the server or blocking the port with firewall
3. with disabling logging of that type of queries.

So that's up to. Make a choice.

 

[DaNgErOuS]

Well, it can be several ways:

1. with allowing recursive queries to your DNS server.
2. with completely disable DNS on the server or blocking the port with firewall
3. with disabling logging of that type of queries.

So that's up to. Make a choice.

3
how can i disable logging of this log ?
tnx

 

[tarsiran]

3
how can i disable logging of this log ?
tnx

i need this too please help me

 

[zEitEr]

Check this http://forum.directadmin.com/showthread.php?t=37477&p=191389#post191389

it's suggested there that you set:

logging {
category ncache { null; };
category security { null; };
category lame-servers{ null; };
};