Updating bind package triggers named to give SERVFAIL error at severity info.

Solution Verified - Updated -

Issue

  • Updating bind package from bind-9.9.4 to bind-9.11.4 starts to give 'SERVFAIL' error at severity 'info' into /var/log/messages when name query can not be resolved by named.
[root@test ~]# tail /var/log/messages
Jul  2 13:27:20 slave named[3884]: client @0x7fa4740e98e0 ::1#36944 (dnssec-failed.org): query failed (SERVFAIL) for dnssec-failed.org/IN/A at ../../../bin/named/query.c:8580

This type of error is only logged into /var/named/data/named.ca(by default) if named has its debug logging enabled with bind-9.9.4, but with bind-9.11.4 the same error goes into /var/log/messages without any configuration changes as long as query logging is active in named.conf.

Environment

  • Red Hat Enterprise Linux 7
  • bind-9.11.4

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content