![[PukiWiki]](image/pukiwiki.png "[PukiWiki]")
#author("2024-01-24T09:04:27+09:00","default:kuji","kuji") #author("2024-01-24T09:41:33+09:00","default:kuji","kuji") CONTENTS #contents ---- Lastmodified &lastmod; ---- *munin de bind9 [#x5adf6fc] **bind9 [#oa2eaa8f] munin de bind9 をモニターするよ /var/named/etc/namedb/named.conf にログの設定を仕込む ///////////////////////////////////////////////////////////////////////////////////// logging { channel "log_default" { file "log/named.log" versions 30 size 100m; severity info; print-time yes; print-category yes; }; category default { log_default; }; category general { log_default; }; category security { log_default; }; category config { log_default; }; category resolver { log_default; }; category xfer-in { log_default;}; category xfer-out { log_default;}; category notify { log_default;}; category client { log_default;}; category network { log_default;}; category update { log_default;}; // category lame-servers { log_default;}; category lame-servers { null;}; channel "log_queries" { file "log/queries.log" versions 3 size 1m; severity info; print-time yes; print-category yes; }; category queries { log_queries; }; }; ///////////////////////////////////////////////////////////////////////////////////// log書き込みディレクトリが無い場合は作成 mkdir /usr/local/etc/namedb/log ** munin の設定 [#wbb923af] /usr/local/etc/munin/plugin-conf.d/plugins.conf [*] env.PATH /usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin [bind*] user root env.rndc /usr/sbin/rndc #env.logfile /var/named/etc/namedb/log/queries.log env.logfile /usr/local/etc/namedb/log/queries.log #env.querystats /var/named/etc/namedb/named.stats env.querystats /usr/local/etc/namedb/named.stats [amavis] env.amavislog /var/log/maillog env.logtail /usr/local/bin/logtail ** /usr/local/share/munin/plugins/bind9 編集 [#bb618135] //** /usr/local/share/munin/plugins/bind9 編集 [#bb618135] cp /usr/local/share/munin/plugins/bind9 /usr/local/share/munin/plugins/bind9_orig vi /usr/local/share/munin/plugins/bind9 // cp /usr/local/share/munin/plugins/bind9 /usr/local/share/munin/plugins/bind9_orig // vi /usr/local/share/munin/plugins/bind9 変更点 //変更点 [bind9] # env.logfile /var/log/bind9/query.log env.logfile /var/named/etc/namedb/log/query.log // [bind9] // # env.logfile /var/log/bind9/query.log // env.logfile /var/named/etc/namedb/log/query.log #my $QUERYLOG = $ENV{logfile} || '/var/log/bind9/query.log'; my $QUERYLOG = $ENV{logfile} || '/var/named/etc/namedb/log/query.log'; #my $STATEFILE= "$ENV{MUNIN_PLUGSTATE}/bind9.state"; my $STATEFILE= "$ENV{MUNIN_PLUGSTATE}/named.log"; my $OTHER=0; // #my $QUERYLOG = $ENV{logfile} || '/var/log/bind9/query.log'; // my $QUERYLOG = $ENV{logfile} || '/var/named/etc/namedb/log/query.log'; // #my $STATEFILE= "$ENV{MUNIN_PLUGSTATE}/bind9.state"; // my $STATEFILE= "$ENV{MUNIN_PLUGSTATE}/named.log"; // // my $OTHER=0; ** /usr/local/share/munin/plugins/bind9_rndc 編集 [#k24e3c5e] cp /usr/local/share/munin/plugins/bind9_rndc /usr/local/share/munin/plugins/bind9_rndc_orig vi /usr/local/share/munin/plugins/bind9_rndc #!/usr/local/bin/perl -w # -*- perl -*- =head1 NAME bind9_rndc - Plugin to monitor usage of bind 9 servers using rndc stats =head1 CONFIGURATION The following environment variables are used by this plugin [bind_rndc] env.rndc /usr/sbin/rndc env.querystats /var/run/named.stats The user/group that runs the plugin must have read access to the stats file. To change user or group (usually Munin plugins are run as nobody) add this to the [bind_rndc] stanza if the "bind" user runs BIND: user bind On the BIND side put statistics-file "/var/run/named.stats"; in the options part of your named.conf or set the querystats variable (see below) to where your named puts the statistics file by default. You must also make sure the rndc.key file is readable by the user that runs the plugin. If using AppArmor, make sure the stats file is allowed (On Ubuntu: add this line to /etc/apparmor.d/usr.sbin.named) /var/run/named/named.stats rw =head1 FEATURES AND BUGS Previous versions of this plugin allowed an empty "rndc" environment setting to not do a explicit dump of stats to the stats file. This version requires running rndc itself. This makes the method of finding the correct stats in the file more reliable than before. =head1 AUTHOR Contributed by Laurent Facq 15/06/2004. Based on Nicolai Langfeldt's bind9 plugin. Reworked by Dagfinn Ilmari Mannsåker. BIND 9.6 patch from "Vrivellino". Reworked by guillomovitch and Kenyon Ralph. =head1 LICENSE License not documented. =head1 MAGIC MARKERS #%# family=manual =cut use strict; my $rndc = defined($ENV{rndc}) ? $ENV{rndc} : '/usr/sbin/rndc'; my $querystats = $ENV{querystats} || '/var/run/named.stats'; my %IN; my @IN_KEYS; # attempt to create log file if it doesn't exist if ( ! -r $querystats ) { system("$rndc stats"); } # open the log file, and get its size open(my $stats, '<', $querystats) or die "$0: $querystats: $!\n"; my $size = (stat $stats)[7]; # call rdnc and go directly to the correct offset system("$rndc stats"); seek($stats , $size, 0); # We want the last block like this in the file (bind 9.early) #+++ Statistics Dump +++ (1087277501) #success 106183673 #referral 2103636 #nxrrset 43534220 #nxdomain 47050478 #recursion 37303997 #failure 17522313 #--- Statistics Dump --- (1087277501) # From BIND 9.5 or newer, this is the format: # # +++ Statistics Dump +++ (1222740363) # ++ Incoming Requests ++ # 13 QUERY # ++ Incoming Queries ++ # 9 A # 1 NS # 1 SOA # 1 MX # 1 TXT # ++ Outgoing Queries ++ # ++ Name Server Statistics ++ # 13 IPv4 requests received # 13 responses sent # 13 queries resulted in successful answer # 9 queries resulted in authoritative answer # 4 queries resulted in non authoritative answer # 4 queries caused recursion # 2 requested transfers completed # ++ Zone Maintenance Statistics ++ # 6 IPv4 notifies sent # --- Statistics Dump --- my $line; # first line has expected content $line = <$stats>; die "unexpected content found" unless $line =~ m/^\+\+\+ Statistics Dump \+\+\+/; # second line allows to guess format $line = <$stats>; chomp $line; if ($line eq '++ Incoming Requests ++') { # new format @IN_KEYS = ('requests', 'responses', 'success', 'auth_answer', 'nonauth_answer', 'nxrrset', 'failure', 'nxdomain', 'recursion', 'duplicates', 'transfers', 'rejections'); %IN = (); for my $key (@IN_KEYS) { $IN{$key} = 0; } # jump to server stats section while ($line ne '++ Name Server Statistics ++') { $line = <$stats>; chomp $line; } while ($line = <$stats>) { chomp $line; last if $line =~ /^\+\+/; next unless $line =~ /^\s+(\d+) (.*)$/; my $n = $1; my $msg = lc($2); if ($msg =~ m/requests.*received$/io) { $IN{requests} += $n; } elsif ($msg =~ m/responses.*sent$/io ) { $IN{responses} += $n; } elsif ($msg eq 'queries resulted in successful answer') { $IN{success} = $n; } elsif ($msg eq 'queries resulted in authoritative answer') { $IN{auth_answer} = $n; } elsif ($msg eq 'queries resulted in non authoritative answer') { $IN{nonauth_answer} = $n; } elsif ($msg eq 'queries resulted in nxrrset') { $IN{nxrrset} = $n; } elsif ($msg eq 'queries resulted in servfail') { $IN{failure} += $n; } elsif ($msg eq 'other query failures') { $IN{failure} += $n; } elsif ($msg eq 'queries resulted in nxdomain') { $IN{nxdomain} = $n; } elsif ($msg eq 'queries caused recursion') { $IN{recursion} = $n; } elsif ($msg eq 'duplicate queries received') { $IN{duplicates} = $n; } elsif ($msg eq 'recursive queries rejected') { $IN{rejections} = $n; } } } else { # old format $line =~ /^(\w+) (\d+)$/; $IN{$1} = $2; while (my $line = <$stats>) { chomp $line; next unless $line =~ /^(\w+) (\d+)$/; $IN{$1} = $2; } } close($stats); if (defined($ARGV[0]) and ($ARGV[0] eq 'config')) { print "graph_title DNS Queries by status\n"; print "graph_vlabel queries / \${graph_period}\n"; print "graph_category BIND\n"; for my $key (@IN_KEYS) { print "query_$key.label $key\n"; print "query_$key.type DERIVE\n"; print "query_$key.min 0\n"; } } else { print "query_$_.value $IN{$_}\n" for @IN_KEYS; } ** munin のプラグイン用リンク張り [#vbb1c274] /usr/local/share/munin/plugins/bind9 /usr/local/share/munin/plugins/bind9_rndc ln -s '/usr/local/share/munin/plugins/bind9' '/usr/local/etc/munin/plugins/bind9' ln -s '/usr/local/share/munin/plugins/bind9_rndc' '/usr/local/etc/munin/plugins/bind9_rndc' /usr/local/etc/rc.d/munin-node restart ---- Total access &counter(total);:本日 &counter(today);:昨日 &counter(yesterday); #counter([total|today|yesterday]);
