- 追加された行はこの色です。
- 削除された行はこの色です。
CONTENTS
#contents
----
Lastmodified &lastmod;
----
*20140213 [#w2da5af7]
#ref(20140213_em0.PNG)
/var/named/etc/namedb/log
ただ、デフォルトのままの設定だったので、ファイルサイズ1M、3
世代までしか取って居らず、総て本日のログのみでした。
いずれにせよ5分前後でログのターンオーバが起こるほどの激しいア
クセスでは有ったようです。
root@piano2nd:/etc/namedb/log # ll
total 7556
-rw-r--r-- 1 bind wheel 928164 Feb 13 15:06 named.log
-rw-r--r-- 1 bind wheel 1048625 Feb 13 15:02 named.log.0
-rw-r--r-- 1 bind wheel 1048629 Feb 13 14:57 named.log.1
-rw-r--r-- 1 bind wheel 1048590 Feb 13 14:51 named.log.2
-rw-r--r-- 1 bind wheel 67828 Feb 13 15:06 queries.log
-rw-r--r-- 1 bind wheel 1048587 Feb 13 15:05 queries.log.0
-rw-r--r-- 1 bind wheel 1048596 Feb 13 15:01 queries.log.1
-rw-r--r-- 1 bind wheel 1048668 Feb 13 14:56 queries.log.2
と、いうことで、30世代、100Mのログを取るようにしてみました。
/var/named/etc/namedb/named.conf
logging {
channel "log_default" {
file "log/named.log" versions 30 size 100m;
severity info;
print-time yes;
print-category yes;
};
これでどうじゃ?
こちらは、おそらく、あまり関係無いかと・・・w
/var/log/
-rw-r----- 1 root wheel 630488 Feb 13 12:39 maillog
-rw-r----- 1 root wheel 1271 Feb 13 00:00 maillog.0.bz2
-rw-r----- 1 root wheel 1834 Feb 12 00:00 maillog.1.bz2
-rw-r----- 1 root wheel 2865 Feb 11 00:00 maillog.2.bz2
-rw-r----- 1 root wheel 1253 Feb 10 00:00 maillog.3.bz2
-rw-r----- 1 root wheel 1494 Feb 9 00:00 maillog.4.bz2
-rw-r----- 1 root wheel 2232 Feb 8 00:00 maillog.5.bz2
Feb 13 04:59:32 piano2nd postfix/smtpd[56756]: connect from unknown[207.232.29.249]
Feb 13 04:59:34 piano2nd postfix/smtpd[55576]: connect from unknown[207.232.29.249]
Feb 13 04:59:35 piano2nd postfix/smtpd[56451]: connect from unknown[207.232.29.249]
Feb 13 04:59:35 piano2nd postfix/anvil[54395]: statistics: max connection rate 40/60s for (smtp:207.232.29.249) at Feb 13 04:58:54
Feb 13 04:59:35 piano2nd postfix/anvil[54395]: statistics: max connection count 15 for (smtp:207.232.29.249) at Feb 13 04:58:36
Feb 13 04:59:36 piano2nd postfix/smtpd[56449]: connect from unknown[207.232.29.249]
Feb 13 04:59:36 piano2nd postfix/smtpd[56447]: lost connection after UNKNOWN from unknown[207.232.29.249]
Feb 13 04:06:14 piano2nd postfix/smtpd[54707]: connect from unknown[207.232.29.249]
Feb 13 04:06:14 piano2nd postfix/smtpd[54401]: connect from unknown[207.232.29.249]
Feb 13 04:06:14 piano2nd postfix/smtpd[54596]: connect from unknown[207.232.29.249]
Feb 13 04:06:17 piano2nd postfix/smtpd[54397]: connect from unknown[207.232.29.249]
Feb 13 04:06:17 piano2nd postfix/smtpd[54401]: lost connection after UNKNOWN from unknown[207.232.29.249]
Feb 13 04:06:17 piano2nd postfix/smtpd[54401]: disconnect from unknown[207.232.29.249]
Feb 13 04:06:17 piano2nd postfix/smtpd[54396]: connect from unknown[207.232.29.249]
Feb 13 04:06:18 piano2nd postfix/smtpd[54401]: connect from unknown[207.232.29.249]
Feb 13 04:06:18 piano2nd postfix/smtpd[54597]: lost connection after UNKNOWN from unknown[207.232.29.249]
Feb 13 04:06:18 piano2nd postfix/smtpd[54597]: disconnect from unknown[207.232.29.249]
Feb 13 04:06:19 piano2nd postfix/smtpd[54597]: connect from unknown[207.232.29.249]
Feb 13 04:06:20 piano2nd postfix/smtpd[54707]: lost connection after UNKNOWN from unknown[207.232.29.249]
Feb 13 04:06:20 piano2nd postfix/smtpd[54707]: disconnect from unknown[207.232.29.249]
Feb 13 04:06:20 piano2nd postfix/smtpd[54403]: lost connection after UNKNOWN from unknown[207.232.29.249]
Feb 13 04:06:20 piano2nd postfix/smtpd[54403]: disconnect from unknown[207.232.29.249]
Feb 13 04:06:20 piano2nd postfix/smtpd[54398]: lost connection after UNKNOWN from unknown[207.232.29.249]
Feb 13 04:06:20 piano2nd postfix/smtpd[54398]: disconnect from unknown[207.232.29.249]
Feb 13 04:06:21 piano2nd postfix/smtpd[54396]: lost connection after UNKNOWN from unknown[207.232.29.249]
Feb 13 04:06:21 piano2nd postfix/smtpd[54396]: disconnect from unknown[207.232.29.249]
ただ、このIPアドレスはイスラエル界隈のもらしい。。。
----
Total access &counter(total);:本日 &counter(today);:昨日 &counter(yesterday);
#counter([total|today|yesterday]);