[dnstap] DNSTap logging localzone responses
Adnan Baykal
abaykal at globalcyberalliance.org
Wed Aug 24 18:06:36 UTC 2016
Awesome. Thanks Robert. We will try that.
On Aug 24, 2016 2:05 PM, "Robert Edmonds" <edmonds at mycre.ws> wrote:
> Hi, Adnan:
>
> A local-zone is answered directly by Unbound without performing
> recursion, so you'll only see response messages for those domains if you
> set "dnstap-log-client-response-messages: yes".
>
> Adnan Baykal wrote:
> > ```
> > dnstap:
> > dnstap-enable: yes
> > dnstap-socket-path: "dnstap.sock"
> > dnstap-send-identity: yes
> > dnstap-send-version: yes
> > dnstap-log-resolver-response-messages: yes
> > dnstap-log-client-query-messages: yes
> > ```
> >
> > On Aug 23, 2016 10:04 PM, "Robert Edmonds" <edmonds at mycre.ws> wrote:
> >
> > > Adnan Baykal wrote:
> > > > We are using Unbound + DNSTap on the same box for logging. Issue we
> ran
> > > > into is that DNSTap does not produce any logs for the localzones we
> are
> > > > using for blocking domains. Basically, we are only seeing
> > > RESOLVER_RESPONSE
> > > > messages from DNSTap and nothing else for the NXDomains we return for
> > > > blocked domains.
>
> --
> Robert Edmonds
> _______________________________________________
> dnstap mailing list
> dnstap at lists.redbarn.org
> http://lists.redbarn.org/mailman/listinfo/dnstap
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.redbarn.org/pipermail/dnstap/attachments/20160824/6760842f/attachment.html>
More information about the dnstap
mailing list