Hi All, We have just published a new draft on a proposed format for DNS packet capture - please see below for details. We would very much appreciate feedback on the overall problem discussed here in addition to the details of the format proposed.
Please note: There are three diagrams in this draft that have been included in the git repository at: https://github.com/dns-stats/draft-dns-capture-format <https://github.com/dns-stats/draft-dns-capture-format> as .svg and .png files and referenced using URLs from within the text. The .png files are there because they look better when viewed directly on the GitHub website. We are very hopeful the new RFC format will arrive in time so that we never have to do these in ascii art :-) However if anyone objects strongly to this approach (for the initial review phase at least) then please let us know…. Also, to make the list aware, there is running code that implements this format to capture DNS traffic data and also convert it back to PCAP files that will be released Open Source in the near future. We will be in Seoul and are happy to discuss this in more detail there. Regards Sara. > Begin forwarded message: > > From: internet-dra...@ietf.org > Subject: New Version Notification for > draft-dickinson-dnsop-dns-capture-format-00.txt > Date: 31 October 2016 at 18:09:23 GMT > To: "John Dickinson" <j...@sinodun.com>, "John Bond" <john.b...@icann.org>, > "Sara Dickinson" <s...@sinodun.com>, "Jim Hague" <j...@sinodun.com>, "Terry > Manderson" <terry.mander...@icann.org> > > > A new version of I-D, draft-dickinson-dnsop-dns-capture-format-00.txt > has been successfully submitted by Sara Dickinson and posted to the > IETF repository. > > Name: draft-dickinson-dnsop-dns-capture-format > Revision: 00 > Title: C-DNS: A DNS Packet Capture Format > Document date: 2016-10-31 > Group: Individual Submission > Pages: 37 > URL: > https://www.ietf.org/internet-drafts/draft-dickinson-dnsop-dns-capture-format-00.txt > Status: > https://datatracker.ietf.org/doc/draft-dickinson-dnsop-dns-capture-format/ > Htmlized: > https://tools.ietf.org/html/draft-dickinson-dnsop-dns-capture-format-00 > > > Abstract: > This document describes a data representation for collections of DNS > messages. The format is designed for efficient storage of large > packet captures of DNS traffic; it attempts to minimize the size of > such packet capture files but retain the full DNS message contents > along with the most useful transport meta data. It is intended to > assist with the development of DNS traffic monitoring applications > and provide a more efficient data exchange format than alternatives > such as PCAP files. > > > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat >
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
