Help
CodeShare
Have some code. Share some code.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

Logging DNS Requests

JRahm
Community Manager
Community Manager

on ‎15-Sep-2022 22:50

Code is community submitted, community supported, and recognized as ‘Use At Your Own Risk’.

Short Description

(From Author @Torijori_Yamamada this post in Technical Forum) I've needed an iRule to read query & query-type from dns packets and send them to remote syslog server. I found a couple of posts on devcentral but looks like they work if you have DNS / GTM license. So, i wrote one for my own needs.

Full Code Snippet

DNS Query Logger

Labels:
Comments
Nikoolayy1
MVP
MVP
‎08-Oct-2022 13:23

Nice article! I have planned to make an article using TCP::collect and TCP::payload for the same as to read DNS over TCP or SMTP (SMTP proxy as there is for some reason no F5 native SMTP event) and to use DNS headers in the conditions when you do not have DNS/GTM license and can't use the DNS_REQUEST event 🙂

0 Kudos
Juergen_Mang
MVP
MVP
‎24-Jul-2023 01:57

Just as note: I have implemented almost complete Query/Response parsing for DNS: https://community.f5.com/t5/codeshare/logging-of-dns-requests-and-responses-without-a-dns-license/ta...

0 Kudos
Version history
Last update:
‎15-Sep-2022 22:50
Updated by:
Community Manager
Copyright © 2023 Khoros, LLC