Updating bind package triggers named to give SERVFAIL error at severity info.
Issue
- Updating bind package from bind-9.9.4 to bind-9.11.4 starts to give 'SERVFAIL' error at severity 'info' into /var/log/messages when name query can not be resolved by named.
[root@test ~]# tail /var/log/messages
Jul 2 13:27:20 slave named[3884]: client @0x7fa4740e98e0 ::1#36944 (dnssec-failed.org): query failed (SERVFAIL) for dnssec-failed.org/IN/A at ../../../bin/named/query.c:8580
This type of error is only logged into /var/named/data/named.ca(by default) if named has its debug logging enabled with bind-9.9.4, but with bind-9.11.4 the same error goes into /var/log/messages without any configuration changes as long as query logging is active in named.conf.
Environment
- Red Hat Enterprise Linux 7
- bind-9.11.4
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.