Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
Vasily2015-02-24 09:09:21
Domain Name System
Vasily, 2015-02-24 09:09:21

How to clone DNS requests to external services?

You need to clone requests to several external filtering systems (your own DNS server on the local network, all clients work through it) in order to implement a similar scheme:

  • [working] request to an external fast failover DNS, the response from which will be given to the client;
  • [clone] request to an external service like dns.yandex.ru for subsequent analysis of the response (whether it is included in the blocked ones);
  • [clone] request to an external service such as rejector.ru and similar ones for further analysis of the response (whether it is included in the blocked ones).

The question is not about choosing DNS filtering services or comparing their effectiveness, but about the technical and efficient implementation of the traffic cloning and response logging scheme.
Platform for solution - doesn't matter Win or *nix, network hardware. A similar problem arises in networks with different software.
The goal is [by analyzing logs] to identify calls to domains from the black list (botnets, viruses, etc.) of various services.
It is impossible to use one service (paid/free) to which working DNS traffic can be turned, because
  • there are false locks;
  • the base of one resource is less than the bases of several resources.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

4 answer(s)
Report
S
Sergey, 2015-02-24
@bk0011m

And what is all this for? Do you want to follow users? So set the proxy.
If there was a DNS request, this does not mean that someone went to the address. Just a request and only

Report
V
Vitaly Pukhov, 2015-02-24
@Neuroware

Roskomnadzor re-login :) And if, in fact, what prevents the client in the local network from changing the DNS server to 8.8.8.8 and not bothering with yours. But let's say if you have "Orthodox" users who do not know how to change dns, your question boils down to the task of "how to raise and configure a DNS server" in order to have replication of external DNS servers and other features, it is pointless to consider this issue without context, at least The DNS server can be raised on linux and on windows and the toolkit will be different.

Report
S
ShamblerR, 2015-02-24
@ShamblerR

In my opinion, turn on any router, they all support DHCP, in fact, here you have a server that will give external DNS.

Report
V
Vlad Zhivotnev, 2015-02-24
@inkvizitor68sl

habrahabr.ru/post/178727 start reading from here about powerdns capabilities in terms of subqueries. Then add to taste.

Similar questions
I
Ivan Frolov2020-04-21 16:37:57
How to transfer DNS from Windows to Linux? 2Reply
S
Smenov2020-04-22 12:29:39
What does the hierarchy in DNS servers look like for a domain name? 3Reply
G
g00d2011-05-20 10:38:03
Horse move? 10Reply
S
Sergey2018-02-22 13:39:21
Windows Server 2012 R2 AD CNAME not working on non-domain computers? 2Reply
H
haa2015-10-22 14:22:49
How to add a virtual machine to a windows domain? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question