Question: what is the optimal logging setting for a BIND DNS Server 


there are no generic optimal settings for logging for a BIND DNS Server. The logging setting depends on the Version of the BIND Server (have different logging categories) and the type of DNS zones (static vs. dynamic, Internet vs. internal zones) are hosted on the server.


The screenshot below shows a recommended logging for BIND 9.6.x and dynamic zones (not updated by Windows clients but by a DHCP Server).

It is not recommended to enable query logging by default, as it slows down the DNS Server.