[dnstap] DNSTap logging localzone responses

Adnan Baykal abaykal at globalcyberalliance.org
Wed Aug 24 18:06:36 UTC 2016


Awesome. Thanks Robert. We will try that.

On Aug 24, 2016 2:05 PM, "Robert Edmonds" <edmonds at mycre.ws> wrote:

> Hi, Adnan:
>
> A local-zone is answered directly by Unbound without performing
> recursion, so you'll only see response messages for those domains if you
> set "dnstap-log-client-response-messages: yes".
>
> Adnan Baykal wrote:
> > ```
> > dnstap:
> >   dnstap-enable: yes
> >   dnstap-socket-path: "dnstap.sock"
> >   dnstap-send-identity: yes
> >   dnstap-send-version: yes
> >   dnstap-log-resolver-response-messages: yes
> >   dnstap-log-client-query-messages: yes
> > ```
> >
> > On Aug 23, 2016 10:04 PM, "Robert Edmonds" <edmonds at mycre.ws> wrote:
> >
> > > Adnan Baykal wrote:
> > > > We are using Unbound + DNSTap on the same box for logging. Issue we
> ran
> > > > into is that DNSTap does not produce any logs for the localzones we
> are
> > > > using for blocking domains. Basically, we are only seeing
> > > RESOLVER_RESPONSE
> > > > messages from DNSTap and nothing else for the NXDomains we return for
> > > > blocked domains.
>
> --
> Robert Edmonds
> _______________________________________________
> dnstap mailing list
> dnstap at lists.redbarn.org
> http://lists.redbarn.org/mailman/listinfo/dnstap
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.redbarn.org/pipermail/dnstap/attachments/20160824/6760842f/attachment.html>


More information about the dnstap mailing list