Logwatch flood named **Unmatched Entries**

2 posts / 0 new
Topic locked
Last post
#1 Fri, 06/12/2009 - 04:13
guy.froissart@g...

Logwatch flood named **Unmatched Entries**

Hello

How can I prevent these connections and this flood on the dns server :

For example :

**Unmatched Entries**
   connection refused resolving 'software.virtualmin.com/AAAA/IN': 208.113.149.117#53: 23 Time(s)
   network unreachable resolving '158.195.174.88.in-addr.arpa/PTR/IN': 2001:610:240:0:53::193#53: 1 Time(s)
   network unreachable resolving '171.144.89.143.in-addr.arpa/PTR/IN': 2001:7fd::1#53: 1 Time(s)
   network unreachable resolving '179.212.127.82.in-addr.arpa/PTR/IN': 2001:500:2f::f#53: 1 Time(s)
   network unreachable resolving '179.212.127.82.in-addr.arpa/PTR/IN': 2001:610:240:0:53::3#53: 1 Time(s)
   network unreachable resolving '179.212.127.82.in-addr.arpa/PTR/IN': 2001:660:3006:1::1:1#53: 1 Time(s)
   network unreachable resolving '179.212.127.82.in-addr.arpa/PTR/IN': 2001:dc0:1:0:4777::140#53: 1 Time(s)
   network unreachable resolving '202.189.251.213.zen.spamhaus.org/A/IN': 2001:7b8:3:1f:0:2:53:2#53: 1 Time(s)
   network unreachable resolving '209.220.85.209.in-addr.arpa/PTR/IN': 2001:dc3::35#53: 1 Time(s)
   network unreachable resolving '23.60.129.61.in-addr.arpa/PTR/IN': 2001:500:1::803f:235#53: 1 Time(s)
   network unreachable resolving '23.60.129.61.in-addr.arpa/PTR/IN': 2001:dc0:1:0:4777::131#53: 1 Time(s)
   network unreachable resolving '23.60.129.61.in-addr.arpa/PTR/IN': 2001:dc0:2001:0:4608::25#53: 1 Time(s)
   network unreachable resolving '23.60.129.61.in-addr.arpa/PTR/IN': 2001:dc0:4001:1:0:1836:0:140#53: 1 Time(s)
   network unreachable resolving '42.189.251.213.iadb.isipp.com/A/IN': 2001:470:1:41:a800:ff:fe50:3143#53: 1 Time(s)
   network unreachable resolving '42.189.251.213.in-addr.arpa/PTR/IN': 2001:dc0:2001:a:4608::59#53: 1 Time(s)
   network unreachable resolving '42.mail-out.ovh.net/A/IN': 2001:41d0:1:4a86::1#53: 1 Time(s)
   network unreachable resolving '42.mail-out.ovh.net/TXT/IN': 2001:41d0:1:1986::1#53: 1 Time(s)
   network unreachable resolving 'NS3.cuhk.edu.hk/A/IN': 2001:503:ba3e::2:30#53: 1 Time(s)
   network unreachable resolving 'NS3.cuhk.edu.hk/A/IN': 2001:503:c27::2:30#53: 1 Time(s)
   network unreachable resolving 'NS3.cuhk.edu.hk/AAAA/IN': 2001:503:ba3e::2:30#53: 1 Time(s)
   network unreachable resolving 'NS3.cuhk.edu.hk/AAAA/IN': 2001:503:c27::2:30#53: 1 Time(s)
   network unreachable resolving 'SUNIC.SUNET.SE/A/IN': 2001:6b0:7::2#53: 1 Time(s)

Suggestions are welcome Thank G.F.

Sat, 06/13/2009 - 23:11
andreychek

If your server isn't allowing queries to be performed by anyone on the Net (ie, port 53 UDP isn't externally visible, or recursive queries are disabled) -- I'm not really sure I'd worry too much about those if things are otherwise working for you.

However, in digging around on the Net a bit, some folks suggest launching BIND with the -4 parameter to force use of IPv4, which can apparently reduce some of those messages. -Eric

Topic locked