Hello Richard,
"Parkin, Richard (R.)" <rpark...@ford.com> writes:
Hello!
We recently re-addressed some of our external-facing cache
servers into a new network and discovered that our IPs
appear to be blackholed going to certain third-party auth
servers, either intentionally or unintentionally. Our
workaround while we sort through these issues is implementing
forwarders.
I’d like to understand how much traffic is flowing to each
forwarder (QPS, etc) and monitor that for any issues. Is
there a way to do that effectively in Bind without putting some
kind of network device on the outbound path to
measure it? If not, does anyone have any suggestions?
I've done a webinar this week for ISC on the topic of
"Instrumenting BIND 9
on Linux with BCC/eBPF". In this webinar, I've used logging of
forwarding
decisions as one example to instrument BIND 9 with eBPF. The
bpftrace
script I've presented might work as a starting point to create
custom
BIND 9 logging for forwarding operations, which does not slow down
the operation of
the BIND 9 server itself.
A recording of the webinar is available at
<https://www.youtube.com/watch?v=VYpZg89NJeA>
Greetings
Carsten
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
