If you see somewhere similar messages then your current root hint file is out of date.
Dec 21 09:12:02 srv named: checkhints: l.root-servers.net/A (199.7.83.42) missing from hints
Dec 21 09:12:02 srv named: checkhints: l.root-servers.net/A (198.32.64.12) extra record in hints
You can easily update it directly from InterNIC site.
$ ftp -a ftp://ftp.internic.net/domain/named.root
Connected to ftp.internic.net.
220 Internic FTP Server.
331 Please specify the password.
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
200 Switching to Binary mode.
250 Directory successfully changed.
Retrieving domain/named.root
local: named.root remote: named.root
150 Opening BINARY mode data connection for named.root (2994 bytes).
100% |******************************************************| 2994 00:00
226 File send OK.
2994 bytes received in 0.07 seconds (41.52 KB/s)
221 Goodbye.
If you want to check DNS configuration then jump directly to IntoDNS and look at generated report.
Check out query logging status by executing command:
# rndc status
number of zones: 21
debug level: 0
xfers running: 0
xfers deferred: 0
soa queries in progress: 0
query logging is OFF
recursive clients: 0/1000
tcp clients: 0/100
server is up and running
Enable query logging. By executing rndc status you can see difference.
# rndc querylog
# rndc status
number of zones: 21
debug level: 0
xfers running: 0
xfers deferred: 0
soa queries in progress: 0
query logging is ON
recursive clients: 0/1000
tcp clients: 0/100
server is up and running
Now you can view queries:
# tail -f /var/log/messages
Feb 27 15:12:27 srv named[8978]: client 1.2.2.3#56853: query: meta.wikimedia.org IN AAAA +
Feb 27 15:12:27 srv named[8978]: client 1.1.1.2#38595: query: a1470.g.akamai.net IN A +E
Feb 27 15:12:28 srv named[8978]: client 1.1.1.2#38595: query: www.allegro.pl IN A +E
Feb 27 15:12:28 srv named[8978]: client 1.1.1.2#38595: query: allegro.by IN A +E
Feb 27 15:12:28 srv named[8978]: client 1.1.1.2#38595: query: aukro.bg IN A +E
To disable it execute command again.
Long time ago my provider had some temporary problems with DNS service. It was real pain but solution was quite simple – just switch to Google Public DNS servers: 8.8.8.8 and 8.8.4.4.