| Table of Content Zone | ||
|---|---|---|
|
| Info |
|---|
Testing / work in progress |
Info
"dnstap is a flexible, structured binary log format for DNS software. It uses Protocol Buffers to encode events that occur inside DNS software in an implementation-neutral format." - https://dnstap.info/
...
- Read from output file to yaml
Code Block language diff dnstap -y -r /tmp/output.dnstap
Configuration
- Based on https://dnstap.info/Examples/ - with some tweaks
...
- Run it to listen on a socket (-u) and output to a file (-w)
Code Block language diff dnstap -u /var/run/dnstap.sock -w /tmp/output.dnstap
...
- You may have to adjust permissions for the socket depending on what app is writing to it
Code Block language diff chown unbound /var/run/dnstap.sock
- We're currently playing with this so no startup script - which could fix all of these
...
- create dnstap.conf in /etc/unbound/unbound.conf.d/ dir:
Code Block language diff dnstap: dnstap-enable: yes #dnstap-socket-path: "/var/run/unbound/dnstap.sock" dnstap-socket-path: "/var/run/dnstap.sock" dnstap-send-identity: yes dnstap-send-version: yes dnstap-log-resolver-response-messages: yes dnstap-log-client-query-messages: yes
...