DNS Transaction logging

Question

I now have a virtual server contains a pool with 2 DNS server for DNS load-balancing.

I would like to:

1) log the DNS lookup request & response, with the time.

2) count the dropped DNS lookup request

anyone can help??

much thx~!!!!!!!!

hamish · Answer

Well... How good are you at writing iRules (TCP) to pull apart the queries and responses?  
&nbsp;  
&nbsp; if you take a look at the iRule I uploaded last year for measuring LDAP response times, you could alter that for DNS. Remember that DNS is (Usually) going to be UDP, not TCP. But at least the datagrams are reasonably easy to decode (Admittedly it's been a few years since I had to, but there are good RFC's out there that describe in glorious detail what they look like). 
&nbsp;  
&nbsp; Basically it degenerates into decoding and counting... Counting is done via tables and sub-tables... (Oh how I long for functions in iRules :) 
&nbsp;  
&nbsp; H

Forum Discussion

DNS Transaction logging

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Logging DNS Requests

Logging of DNS Requests and Responses without a DNS license

The Power of &: F5 Hybrid DNS solution

Using F5 Distributed Cloud DNS Load Balancer health checks and DNS observability

GSLB Split DNS by iRule

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS