RHEL, Centos, Rocky, Fedora rpm 9.18.30

2024-09-18 Thread Carl Byington via bind-users 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

https://www.five-ten-sg.com/mapper/bind contains links to the source
rpm, and build instructions. This .src.rpm contains a .tar.gz file with
the ARM documentation, so the rpm rebuild process does not need sphinx-
build and associated dependencies.


-BEGIN PGP SIGNATURE-

iHMEAREKADMWIQSuFMepaSkjWnTxQ5QvqPuaKVMWwQUCZur5+RUcY2FybEBmaXZl
LXRlbi1zZy5jb20ACgkQL6j7milTFsEA0ACfRL9CzbNLX/Ho9a310RU1vjDghJsA
niA415PzukLUUTdhQGO9mu1MeaaO
=4anv
-END PGP SIGNATURE-



-- 
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from 
this list

ISC funds the development of this software with paid support subscriptions. 
Contact us at https://www.isc.org/contact/ for more information.


bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Fwd: Logging with Unencrypted DNS, DoT and DoH

2024-09-18 Thread paranoid sysadmin 
AFAIK  you are correct that the data is not currently in the ISC supplied
statistics.

HOWEVER, if you are not opposed to rolling your own, have you looked at
dnstap? The raw data is all there for what you asked for. I hacked the
attached script. It runs on my test system, but YMMV

output:
17-Sep-2024  DOT 7726  5.9%
17-Sep-2024  TCP  288  0.2%
17-Sep-2024  UDP   122478 93.9%

Regards!
Paranoid


-- Forwarded message -
From: John W. Blue via bind-users 
Date: Tue, Sep 17, 2024 at 4:00 PM
Subject: RE: Logging with Unencrypted DNS, DoT and DoH
To: bind-users@lists.isc.org 


Ralph,



You already may be aware of the BIND webinar’s put on by ISC and presented
by Carsten:



https://www.isc.org/docs/BIND_9webinar2.pdf

https://www.youtube.com/watch?v=7Uu6XvY68SM



If not, spend some time watching the video and would like to point out that
slide 12 lists several COTS vendors that are able to consume the
named.stats output.



John





*From:* bind-users [mailto:bind-users-boun...@lists.isc.org] *On
Behalf Of *Bischof,
Ralph F. (MSFC-IS64)[AEGIS] via bind-users
*Sent:* Tuesday, September 17, 2024 3:40 PM
*To:* bind-users@lists.isc.org
*Subject:* Logging with Unencrypted DNS, DoT and DoH



Hello,



BIND 9.18.7

RHEL 8.10 (Oopta)



I am being asked if it is possible to differentiate the percentage of
queries coming into a server that are unencrypted, DoT and DoH.

Example: For a given 24 hours, 50% were 53, 25% were 853 and 25% were 443.

I cannot find a difference in the query logs to show how the query came
into the server. My only thought at the moment is to run ‘tcpdump’ on all
of the servers and script something.

Is there some way that I just have not found within BIND?

My apologies if this has been asked previously.



Thank you,

*Ralph F. Bischof, Jr. |* *Leidos*

DDI Service Architect

Digital Modernization Sector



ralph.bisc...@nasa.gov | www.leidos.com


+1 (256) 682-9145 *M*






-- 
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list

ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.


bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users


-- 


paranoid sysadmin


qnd_dnstap_extract.sh
Description: Binary data
-- 
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from 
this list

ISC funds the development of this software with paid support subscriptions. 
Contact us at https://www.isc.org/contact/ for more information.


bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Fwd: About dnstap feature

2024-09-18 Thread Champion Xie 
After executing rndc dnstap -reopen, the properties of the dnstap-output
object file changed, and the original named became root. Of course, I used
the root user to execute the rndc command. At this time, executing
dnstap-read again will report an error, and the query log cannot be written
to the dnstap-output object file. In addition, after executing rndc dnstap
-reopen, you must execute rndc reconfig again to use dnstap-read to query
the record.

error info
[image: image.png]


In addition, does ISC have any plans to continuously optimize the dnstap
function? I think the dnstap function is very good and we need it. Of
course, there is still a long way to go. We need to improve the development
of dnstap related functions, as well as the best practices of dnstap and
the improvement of related manuals.


-- 
Best Regards!!
champion_xie


-- 
Best Regards!!
champion_xie
-- 
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from 
this list

ISC funds the development of this software with paid support subscriptions. 
Contact us at https://www.isc.org/contact/ for more information.


bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users