We are running DNSMasq to whitelist domains within AWS. We wanted all
domains not in the whitelist to produce a log line to be forwarded to our
SIEM. Our goal is to detect people attempting DNS attacks against us. Here
is a patch that produces a simple log line if a forwarding is not

I would love this to be added to the main codebase. It is a simple change
and will allow others to track non-whitelisted domains.


Attachment: add-logging-for-non-forwarded-domains.patch
Description: Binary data

Dnsmasq-discuss mailing list

Reply via email to