![[PukiWiki]](image/pukiwiki.png "[PukiWiki]")
CONTENTS #contents ---- Lastmodified &lastmod; ---- *20140213 [#w2da5af7] #ref(20140213_em0.PNG) /var/named/etc/namedb/log ただ、デフォルトのままの設定だったので、ファイルサイズ1M、3 世代までしか取って居らず、総て本日のログのみでした。 いずれにせよ5分前後でログのターンオーバが起こるほどの激しいア クセスでは有ったようです。 root@piano2nd:/etc/namedb/log # ll total 7556 -rw-r--r-- 1 bind wheel 928164 Feb 13 15:06 named.log -rw-r--r-- 1 bind wheel 1048625 Feb 13 15:02 named.log.0 -rw-r--r-- 1 bind wheel 1048629 Feb 13 14:57 named.log.1 -rw-r--r-- 1 bind wheel 1048590 Feb 13 14:51 named.log.2 -rw-r--r-- 1 bind wheel 67828 Feb 13 15:06 queries.log -rw-r--r-- 1 bind wheel 1048587 Feb 13 15:05 queries.log.0 -rw-r--r-- 1 bind wheel 1048596 Feb 13 15:01 queries.log.1 -rw-r--r-- 1 bind wheel 1048668 Feb 13 14:56 queries.log.2 と、いうことで、30世代、100Mのログを取るようにしてみました。 /var/named/etc/namedb/named.conf logging { channel "log_default" { file "log/named.log" versions 30 size 100m; severity info; print-time yes; print-category yes; }; これでどうじゃ? こちらは、おそらく、あまり関係無いかと・・・w /var/log/ -rw-r----- 1 root wheel 630488 Feb 13 12:39 maillog -rw-r----- 1 root wheel 1271 Feb 13 00:00 maillog.0.bz2 -rw-r----- 1 root wheel 1834 Feb 12 00:00 maillog.1.bz2 -rw-r----- 1 root wheel 2865 Feb 11 00:00 maillog.2.bz2 -rw-r----- 1 root wheel 1253 Feb 10 00:00 maillog.3.bz2 -rw-r----- 1 root wheel 1494 Feb 9 00:00 maillog.4.bz2 -rw-r----- 1 root wheel 2232 Feb 8 00:00 maillog.5.bz2 Feb 13 04:59:32 piano2nd postfix/smtpd[56756]: connect from unknown[207.232.29.249] Feb 13 04:59:34 piano2nd postfix/smtpd[55576]: connect from unknown[207.232.29.249] Feb 13 04:59:35 piano2nd postfix/smtpd[56451]: connect from unknown[207.232.29.249] Feb 13 04:59:35 piano2nd postfix/anvil[54395]: statistics: max connection rate 40/60s for (smtp:207.232.29.249) at Feb 13 04:58:54 Feb 13 04:59:35 piano2nd postfix/anvil[54395]: statistics: max connection count 15 for (smtp:207.232.29.249) at Feb 13 04:58:36 Feb 13 04:59:36 piano2nd postfix/smtpd[56449]: connect from unknown[207.232.29.249] Feb 13 04:59:36 piano2nd postfix/smtpd[56447]: lost connection after UNKNOWN from unknown[207.232.29.249] Feb 13 04:06:14 piano2nd postfix/smtpd[54707]: connect from unknown[207.232.29.249] Feb 13 04:06:14 piano2nd postfix/smtpd[54401]: connect from unknown[207.232.29.249] Feb 13 04:06:14 piano2nd postfix/smtpd[54596]: connect from unknown[207.232.29.249] Feb 13 04:06:17 piano2nd postfix/smtpd[54397]: connect from unknown[207.232.29.249] Feb 13 04:06:17 piano2nd postfix/smtpd[54401]: lost connection after UNKNOWN from unknown[207.232.29.249] Feb 13 04:06:17 piano2nd postfix/smtpd[54401]: disconnect from unknown[207.232.29.249] Feb 13 04:06:17 piano2nd postfix/smtpd[54396]: connect from unknown[207.232.29.249] Feb 13 04:06:18 piano2nd postfix/smtpd[54401]: connect from unknown[207.232.29.249] Feb 13 04:06:18 piano2nd postfix/smtpd[54597]: lost connection after UNKNOWN from unknown[207.232.29.249] Feb 13 04:06:18 piano2nd postfix/smtpd[54597]: disconnect from unknown[207.232.29.249] Feb 13 04:06:19 piano2nd postfix/smtpd[54597]: connect from unknown[207.232.29.249] Feb 13 04:06:20 piano2nd postfix/smtpd[54707]: lost connection after UNKNOWN from unknown[207.232.29.249] Feb 13 04:06:20 piano2nd postfix/smtpd[54707]: disconnect from unknown[207.232.29.249] Feb 13 04:06:20 piano2nd postfix/smtpd[54403]: lost connection after UNKNOWN from unknown[207.232.29.249] Feb 13 04:06:20 piano2nd postfix/smtpd[54403]: disconnect from unknown[207.232.29.249] Feb 13 04:06:20 piano2nd postfix/smtpd[54398]: lost connection after UNKNOWN from unknown[207.232.29.249] Feb 13 04:06:20 piano2nd postfix/smtpd[54398]: disconnect from unknown[207.232.29.249] Feb 13 04:06:21 piano2nd postfix/smtpd[54396]: lost connection after UNKNOWN from unknown[207.232.29.249] Feb 13 04:06:21 piano2nd postfix/smtpd[54396]: disconnect from unknown[207.232.29.249] ただ、このIPアドレスはイスラエル界隈のもらしい。。。 ---- Total access &counter(total);:本日 &counter(today);:昨日 &counter(yesterday); #counter([total|today|yesterday]);
