Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

How to DNSDIST Protobuf PowerDNS -> DNS TAP Relay ? #749

Open
dtouzeau opened this issue Jun 24, 2024 · 1 comment
Open

How to DNSDIST Protobuf PowerDNS -> DNS TAP Relay ? #749

dtouzeau opened this issue Jun 24, 2024 · 1 comment

Comments

@dtouzeau
Copy link

Got DnsDist that sends Protobuf PowerDNS to DNS Collector.
Did not find how to transform Dnsdist pipeline to DNSTAP in order to use DNS TAP relay for remote logging

DNSDIST -> GO DNS Collector (pipeline Protobuf PowerDNS) -> DNSTAP client -> DNSTAP relay -> remote receiver.
Non-working configuration


global:
  text-format: timestamp-rfc3339ns identity operation rcode queryip edns-csubnet queryport
    family protocol length-unit qname qtype latency
  text-format-delimiter: ' '
  text-format-boundary: '"'
  trace:
    verbose: true
    log-malformed: false
    filename: /var/log/dns-collector.trace
    max-size: 100
    max-backups: 2
  server-identity: dns-collector
  pid-file: /var/run/dns-collector.pid

pipelines:
- name: dnsdist-in
  transforms:
    latency:
      measure-latency: true
      queries-timeout: 2
      unanswered-queries: true
    normalize:
      qname-lowercase: true
  routing-policy:
    forward: [relay-out,out-file]
  powerdns:
    add-dns-payload: false
    chan-buffer-size: 65535
    listen-ip: 127.0.0.1
    listen-port: 4897
    reset-conn: true

- name: relay-out
  routing-policy:
  dnstapclient:
    buffer-size: 100
    chan-buffer-size: 65535
    compression: none
    connect-timeout: 5
    extended-support: false
    flush-interval: 30
    overwrite-identity: false
    remote-address: 192.168.3.46
    remote-port: 6000
    retry-interval: 10
    transport: tcp

- name: out-file
  routing-policy:
  logfile:
    compress: true
    compress-interval: 5
    file-path: /var/log/dns-queries.log
    max-files: 0
    max-size: 500
    mode: flat-json
@dtouzeau dtouzeau changed the title How to DNSDIST Protobuf PowerDNS -> DNS TAP Relay How to DNSDIST Protobuf PowerDNS -> DNS TAP Relay ? Jun 24, 2024
@dmachard
Copy link
Owner

Can you try with add-dns-payload: true on your powerdns collector?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants