linux poison RSS
linux poison Email

Monitoring DNS server on OpenSuSe - dnstop

dnstop is a great tool when maintaining a DNS server. Log file can give out required information but dnstop is just like top command for monitoring dns traffic. It is a small tool to listen on device or to parse the file savefile and collect and print statistics on the local network's DNS traffic. You can see information about all DNS clients, DNS queries and much more with this tool.

Installation: Use "1-click" installer to install dnstop
OpenSuSe 11.1 - here
OpenSuSe 11.0 - here

After successful installation, go to console and use command: dnstop eth0, this will show you the output from where (client ip address) you are getting the request on interface "eth0"



now press "2" to get the detail information about the domain-name that was resolved by your dnsserver


There many more option to provide detailed view of current, traffic, just type ? to view help for all run time options:

 s - Sources list
 d - Destinations list
 t - Query types
 o - Opcodes
 r - Rcodes
 1 - 1st level Query Names      ! - with Sources
 2 - 2nd level Query Names      @ - with Sources
 3 - 3rd level Query Names      # - with Sources
 4 - 4th level Query Names      $ - with Sources
 5 - 5th level Query Names      % - with Sources
 6 - 6th level Query Names      ^ - with Sources
 7 - 7th level Query Names      & - with Sources
 8 - 8th level Query Names      * - with Sources
 9 - 9th level Query Names      ( - with Sources


0 comments:

Post a Comment

Related Posts with Thumbnails