Named updating zone log
The primary full computer name, an FQDN, is based on the primary DNS suffix of a computer,appended to its computer name.
Additional considerations: When one of the previous events triggers a dynamic update, the DNS Client service (not the DHCP Client service) sends updates.
An updater can find the authoritative name servers for a zone by retrieving the zone's NS records.
If the name server receiving an authorized update message is not the primary master for the zone, it forwards the update "upstream" to its master server, a process referred to as "update forwarding." If this next server, in turn, is a slave for the zone, it also forwards the update upstream.
subnet 192.168.1.0 netmask 255.255.255.0 # Fixed IP addresses can also be specified for hosts.
So my logging section looks like the following: Thanks for the information.I would like to know the particular zone file from which the query is extracting the information from. Enabling debug mode in BIND might give you additional levels of detail, but it's going to cause a huge amount of logging to be generated which will inturn impact the performance of the DNS server.Detailed information on Bind9 can be found here, explicitly logging as well:zytrax.com/books/dns/ch7/You can assign the same category to more than one file and thus have different logging levels on separate files.Nov 12 ps133045 named: client .42#50135: signer " approved Nov 12 ps133045 named: client .42#50135: updating zone 'mydomain.com/IN': adding an RR at 'client$ Nov 12 ps133045 named: /etc/bind/zones/zone.jnl: create: permission denied Nov 12 ps133045 named: client .42#50135: updating zone 'mydomain.com/IN': error: journal open fai$ So I figured it was permissions, so to test I gave both /var/named and /etc/bind chmod 666 Didn't help, so I created the file and chmod 600 it and thought that would do, I also did chown bind:bind and root:bind, but I still get the same error in both cases. Now it actually seems to work, here is the DNS chart for resolving client1.currently, which is a A record I just added with nsupdate ip.seveas.net/dnsgraph/png/client1.epnddns.com/… Therefore, the nsupdate process cannot write to them either.Now I can't even restart bind due to this error Nov 12 ps133045 named: loading configuration from '/etc/bind/named.conf' Nov 12 ps133045 named: /etc/bind/local:9: open: /var/named/dnskeys.conf: permission denied Nov 12 ps133045 named: loading configuration: permission denied Nov 12 ps133045 named: exiting (due to fatal error) drw-rw-rw- 2 root bind 121 Nov 12 . it doesn't resolve in my browser yet but I gotta update my ns4 server first I assume. If you're dynamically updating your DNS, you should store your zone files in /var/lib/bind instead - https://help.ubuntu.com/14.04/serverguide/dns-configuration.html#dns-primarymaster-configuration Apt installer should have already created this directory with the correct permissions and App Armor context.