Page MenuHomeVyOS Platform
Create Task
Maniphest T1487

DNS (pdns_recursor) stats logs not saved to disk
Closed, ResolvedPublic
Actions

Description

pdns_recursor stats logs are seen in journalctl but not in /var/log/*.

As journald doesn't save to disk this means all logs are lost on reboot.

pdns log facility is 3 (daemon) and priority (=syslog severity) is 6, this translates to daemon.info

Mon 2019-06-24 12:26:51.084882 CEST [...]
    _BOOT_ID=xxx
    _MACHINE_ID=xxx
    _HOSTNAME=vyos
    _TRANSPORT=stdout
    PRIORITY=6
    SYSLOG_FACILITY=3
    SYSLOG_IDENTIFIER=pdns_recursor
    MESSAGE=stats: 54106 questions, 4436 cache entries, 997 negative entries, 6% cache hits
    _PID=2868
    _UID=0
    _GID=0
    _COMM=pdns_recursor
    _EXE=/usr/sbin/pdns_recursor
    _CMDLINE=/usr/sbin/pdns_recursor --daemon=no --write-pid=no --disable-syslog --log-timestamp=no
    _CAP_EFFECTIVE=404c1
    _SYSTEMD_CGROUP=/system.slice/pdns-recursor.service
    _SYSTEMD_UNIT=pdns-recursor.service
    _SYSTEMD_SLICE=system.slice

vyos default for /var/log/messages is *.notice;local7.debug

By setting set system syslog global facility all level info; set system syslog global facility protocols level debug, from short testing on my machine, it adds dhcpd and sudo logs which you'd want saved anyway, so imo the default should be set to *.info. This does increase disk writes so it may not be suitable for flash drives.

Details

Difficulty level
Unknown (require assessment)
Version
-
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)
Issue type
Unspecified (please specify)

Event Timeline

jjakob created this task.Jun 24 2019, 9:58 PM
jjakob created this object in space S1 VyOS Public.
dmbaturin added a project: test.Jul 29 2021, 12:29 PM
dmbaturin set Is it a breaking change? to Unspecified (possibly destroys the router).
Viacheslav added a subscriber: Viacheslav.Aug 17 2021, 11:06 AM

Do we need to set this option configurable?
We have an option --disable-syslog so for enable logging it should be --enable-syslog

[email protected]:~$ sudo cat /etc/systemd/system/pdns-recursor.service.d/override.conf 
[Service]
WorkingDirectory=
WorkingDirectory=/run/powerdns
RuntimeDirectory=
RuntimeDirectory=powerdns
RuntimeDirectoryPreserve=yes
ExecStart=
ExecStart=/usr/sbin/pdns_recursor --daemon=no --write-pid=no --disable-syslog --log-timestamp=no --config-dir=/run/powerdns --socket-dir=/run/powerdns
[email protected]:~$
c-po added a subscriber: c-po.EditedAug 17 2021, 12:06 PM

From the manual:

Do not log to syslog, only to stdout. Use this setting when running inside a supervisor that handles logging (like systemd). Note: do not use this setting in combination with daemon as all logging will disappear.

Log files can be read from journal by:

[email protected]:~$ journalctl -u pdns-recursor -n 10
-- Logs begin at Tue 2021-08-17 00:26:56 CEST, end at Tue 2021-08-17 14:07:37 CEST. --
Aug 17 13:08:54 BR1.wue3 pdns_recursor[9301]: stats: 6915 packet cache entries, 89% packet cache hits
Aug 17 13:08:54 BR1.wue3 pdns_recursor[9301]: stats: thread 0 has been distributed 33512710 queries
Aug 17 13:08:54 BR1.wue3 pdns_recursor[9301]: stats: 9 qps (average over 1800 seconds)
Aug 17 13:38:54 BR1.wue3 pdns_recursor[9301]: stats: 33529990 questions, 102 cache entries, 12 negative entries, 12% cache hits
Aug 17 13:38:54 BR1.wue3 pdns_recursor[9301]: stats: throttle map: 1, ns speeds: 815, failed ns: 5, ednsmap: 1491
Aug 17 13:38:54 BR1.wue3 pdns_recursor[9301]: stats: outpacket/query ratio 28%, 0% throttled, 0 no-delegation drops
Aug 17 13:38:54 BR1.wue3 pdns_recursor[9301]: stats: 552 outgoing tcp connections, 0 queries running, 53303 outgoing timeouts
Aug 17 13:38:54 BR1.wue3 pdns_recursor[9301]: stats: 6873 packet cache entries, 89% packet cache hits
Aug 17 13:38:54 BR1.wue3 pdns_recursor[9301]: stats: thread 0 has been distributed 33529822 queries
Aug 17 13:38:54 BR1.wue3 pdns_recursor[9301]: stats: 9 qps (average over 1800 seconds)

I also see the logfiles in my message file:

[email protected]:~$ show log all | match pdns_recursor
Aug 17 10:08:54 BR1 pdns_recursor[9301]: stats: 33405762 questions, 99 cache entries, 3 negative entries, 12% cache hits
Aug 17 10:08:54 BR1 pdns_recursor[9301]: stats: throttle map: 0, ns speeds: 733, failed ns: 1, ednsmap: 1356
Aug 17 10:08:54 BR1 pdns_recursor[9301]: stats: outpacket/query ratio 28%, 0% throttled, 0 no-delegation drops
Aug 17 10:08:54 BR1 pdns_recursor[9301]: stats: 551 outgoing tcp connections, 0 queries running, 53091 outgoing timeouts
Aug 17 10:08:54 BR1 pdns_recursor[9301]: stats: 6120 packet cache entries, 89% packet cache hits
Aug 17 10:08:54 BR1 pdns_recursor[9301]: stats: thread 0 has been distributed 33405594 queries
Aug 17 10:08:54 BR1 pdns_recursor[9301]: stats: 9 qps (average over 1800 seconds)
Viacheslav added a comment.Aug 17 2021, 12:47 PM

@c-po Can we close it?

syncer edited projects, added VyOS 1.3 Equuleus (1.3.0-epa1); removed test, VyOS 1.3 Equuleus.Sep 5 2021, 7:06 AM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.0); removed VyOS 1.3 Equuleus (1.3.0-epa1).Nov 1 2021, 10:09 PM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).Aug 29 2022, 7:05 AM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.4); removed VyOS 1.3 Equuleus (1.3.3).Jul 12 2023, 9:44 PM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.5); removed VyOS 1.3 Equuleus (1.3.4).Aug 25 2023, 9:31 PM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.6); removed VyOS 1.3 Equuleus (1.3.5).Dec 17 2023, 11:38 PM
c-po claimed this task.Jan 9 2024, 6:14 PM
c-po set Issue type to Unspecified (please specify).
dmbaturin triaged this task as High priority.Jan 9 2024, 6:32 PM
dmbaturin added projects: VyOS 1.4 Sagitta, VyOS 1.5 Circinus.
c-po added a comment.Jan 11 2024, 6:25 AM

https://github.com/vyos/vyos-1x/pull/2797

c-po moved this task from Need Triage to Finished on the VyOS 1.5 Circinus board.Jan 11 2024, 6:26 AM
pasik added a subscriber: pasik.Jan 23 2024, 9:28 PM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.7); removed VyOS 1.3 Equuleus (1.3.6).Feb 10 2024, 9:18 AM
dmbaturin added a project: Restricted Project.Feb 15 2024, 11:25 AM
dmbaturin edited projects, added VyOS 1.4 Sagitta (1.4.0-epa1); removed VyOS 1.4 Sagitta.Feb 15 2024, 3:04 PM
dmbaturin closed this task as Resolved.Fri, Apr 12, 3:36 PM
dmbaturin removed projects: VyOS 1.3 Equuleus (1.3.7), VyOS 1.5 Circinus.