How do I stop logging of DNS queries in /var/log/messages ?

Brian_Gregory
updated 2 yrs ago
4replies

CLI Version: 1.37.7
Platform: mipsle (Ubiquiti EdgeRouter X)

I'm using nextdns with dnsmasq on my Edgerouter X.

Here is my nextdns.conf:

auto-activate false
control /var/run/nextdns.sock
config xxxxxx
max-ttl 0s
report-client-info false
max-inflight-requests 256
discovery-dns
mdns disabled
hardened-privacy false
setup-router false
listen 127.0.0.1:53053
cache-size 0
cache-max-age 0s
detect-captive-portals false
bogus-priv true
log-queries false
use-hosts false
timeout 5s

dnsmasq is set up more or less like this (some irrelevant parts removed):

    dns {
        forwarding {
            cache-size 1000
            listen-on switch0.10
            listen-on switch0.20
            options no-resolv
            options query-port=53054
            options server=127.0.0.1#53053
            options bogus-priv
            options domain-needed
            options stop-dns-rebind
        }
    }

Question: How can I stop /var/log/messages filling up with lines like this:

ubnt@ubnt:~$ tail /var/log/messages
Dec 30 22:51:42 ubnt nextdns[7797]: Connected [2a00:11c0:8:4::9]:443 (con=9ms tls=34ms, TCP, TLS13)
Dec 30 22:52:13 ubnt nextdns[7797]: Connected [2a00:11c0:8:4::9]:443 (con=9ms tls=34ms, TCP, TLS13)
Dec 30 22:54:14 ubnt nextdns[7797]: Connected [2a00:11c0:8:4::9]:443 (con=12ms tls=62ms, TCP, TLS13)
Dec 30 22:55:35 ubnt nextdns[7797]: Connected [2a00:11c0:8:4::9]:443 (con=9ms tls=34ms, TCP, TLS13)
Dec 30 22:57:13 ubnt nextdns[7797]: Connected 37.252.230.153:443 (con=8ms tls=34ms, TCP, TLS13)
Dec 30 22:58:47 ubnt nextdns[7797]: Connected [2a00:11c0:8:4::9]:443 (con=12ms tls=44ms, TCP, TLS13)
Dec 30 23:00:01 ubnt nextdns[7797]: Connected [2a00:11c0:8:4::9]:443 (con=9ms tls=35ms, TCP, TLS13)
Dec 30 23:01:16 ubnt nextdns[7797]: Connected 209.250.226.191:443 (con=9ms tls=58ms, TCP, TLS13)
Dec 30 23:03:44 ubnt nextdns[7797]: Connected [2a00:11c0:8:4::9]:443 (con=9ms tls=34ms, TCP, TLS13)
Dec 30 23:06:12 ubnt nextdns[7797]: Connected [2a00:11c0:8:4::9]:443 (con=10ms tls=34ms, TCP, TLS13)
ubnt@ubnt:~$

Setup

- Chris_Leidich
- 2 yrs ago
- Reported - view
The connection logs cannot be shut off unfortunately. You'll see them logged every few minutes when the CLI establishes a connection, so they're not per-query but still pretty darn common. There have been some other posts and bugs filed about being able to shut this off but as of now I don't think that feature's been implemented. Here's one of the bugs, idle since Feb. Supress Connected message in syslog · Issue #425 · nextdns/nextdns (github.com)
- Brian_Gregory
- 2 yrs ago
- Reported - view
Looks like it'll take a few weeks before /var/log/messages gets too big and my router crashes.

Software really shouldn't be filling /var/log/messages with high volume useless rubbish like this.
- Chris_Leidich
  
  2 yrs ago
  
  Reported - view
  Brian Gregory yeah, better to hide this type of message behind a verbose or debug flag. That aside – Do the Edgerouters not rotate the messages files daily? The UDM does but that’s the only Ubiquiti product I’m familiar with.
- Chess_McKinney
  
  2 yrs ago
  
  Reported - view
  Brian Gregory I agree - a way to stop nextDNS logging would be awesome. FYI - messages rotate once 1 MB in size (checked every hour as I remember). As this is in temp (memory) no flash writes. Cut back on number of message logs if you have space issues.
  
  set system syslog global archive files 2

Content aside

1 Likes
2 yrs agoLast active
4Replies
362Views
3 Following

How do I stop logging of DNS queries in /var/log/messages ?

4 replies

Content aside

Home

Tags