{"id":214,"date":"2019-10-05T16:45:06","date_gmt":"2019-10-05T20:45:06","guid":{"rendered":"http:\/\/puck.nether.net\/~jared\/blog\/?p=214"},"modified":"2019-10-10T07:52:49","modified_gmt":"2019-10-10T11:52:49","slug":"dnsdist-dnstap","status":"publish","type":"post","link":"https:\/\/puck.nether.net\/~jared\/blog\/?p=214","title":{"rendered":"dnsdist + dnstap"},"content":{"rendered":"<p>real quick, wanted to document this for others out there. here&#8217;s the steps you need to run dnsdist + dnstap to log\/process your dns queries easily<\/p>\n<p>\u00a0<\/p>\n<blockquote>\n<pre>sudo apt-get install -y golang<br \/><br \/>go get -u github.com\/dnstap\/golang-dnstap\/dnstap<br \/><br \/>sudo vi \/etc\/dnsdist\/dnsdist.conf<br \/><br \/># Add these lines<br \/>rl = newFrameStreamTcpLogger(\"127.0.0.1:8000\")<br \/>addResponseAction(AllRule(), DnstapLogResponseAction(\"rdns\", rl))<br \/><br \/>:wq<br \/><br \/>sudo systemctl restart dnsdist.service<br \/><br \/>go\/bin\/dnstap -l 127.0.0.1:8000<\/pre>\n<\/blockquote>\n<p>And you&#8217;re all set.<\/p>\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>real quick, wanted to document this for others out there. here&#8217;s the steps you need to run dnsdist + dnstap to log\/process your dns queries easily \u00a0 sudo apt-get install -y golanggo get -u github.com\/dnstap\/golang-dnstap\/dnstapsudo vi \/etc\/dnsdist\/dnsdist.conf# Add these linesrl = newFrameStreamTcpLogger(&#8220;127.0.0.1:8000&#8221;)addResponseAction(AllRule(), DnstapLogResponseAction(&#8220;rdns&#8221;, rl)):wqsudo systemctl restart dnsdist.servicego\/bin\/dnstap -l 127.0.0.1:8000 And you&#8217;re all set.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/puck.nether.net\/~jared\/blog\/index.php?rest_route=\/wp\/v2\/posts\/214"}],"collection":[{"href":"https:\/\/puck.nether.net\/~jared\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/puck.nether.net\/~jared\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/puck.nether.net\/~jared\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/puck.nether.net\/~jared\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=214"}],"version-history":[{"count":5,"href":"https:\/\/puck.nether.net\/~jared\/blog\/index.php?rest_route=\/wp\/v2\/posts\/214\/revisions"}],"predecessor-version":[{"id":224,"href":"https:\/\/puck.nether.net\/~jared\/blog\/index.php?rest_route=\/wp\/v2\/posts\/214\/revisions\/224"}],"wp:attachment":[{"href":"https:\/\/puck.nether.net\/~jared\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=214"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/puck.nether.net\/~jared\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=214"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/puck.nether.net\/~jared\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=214"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}