Logging Response Results

Stephane Bortzmeyer bortzmeyer at nic.fr
Fri Jun 24 12:11:15 UTC 2011


On Thu, Jun 23, 2011 at 02:31:22PM -0700,
 Ray Van Dolson <rvandolson at esri.com> wrote 
 a message of 37 lines which said:

> If you're handy with Python, pcapy[1]

Quite limited.

> and impacket[2] 

No IPv6 support. And, anyway, neither pcapy nor impacket parses the
DNS (if you read French, see 
<http://www.bortzmeyer.org/libpcap-python.html>).

> would likely be a more efficient way to parse DNS traffic for query
> responses than working with tcpdump output natively (unless you're
> skilled with C).

It exists several DNS parsers written in C in free software (I
mentionbed one before but there is also dns2db, the one in dnscap, and
of course the ones in tcpdump and wireshark, etc) so there is no need
to write a C parser from scratch.




More information about the bind-users mailing list