Re: Question about DNS-Tap integration
Michal Novotny writes: > Hi Bjørn, > > thanks a lot for your reply. Does those resolvers have support for > DNS-Tap compiled in already? Probably not. But the addtional packaging7build support should be much easier to add than to implement dnstap support in dnsmasq. > Also, does LuCI interface have support for configuring it already? Not likely. That's more work, and one might question the value. I would not expect a lot of users. But I'm sure it's accepted if anyone wants to do the work. > I was unable to find it in the OpenWRT to > configure and I had to compile the resolvers with dnstap support and > use socat to be able to transfer it using TCP/IP layer. Did I miss > something? I guess not. BTW, I see that OpenWrt also has pdns-recursor, so the set of resolver software with dnstap support is even longer. Absolutely no need to hack on dnsmasq for this. Bjørn ___ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
Re: Question about DNS-Tap integration
Hi Bjørn, thanks a lot for your reply. Does those resolvers have support for DNS-Tap compiled in already? Also, does LuCI interface have support for configuring it already? I was unable to find it in the OpenWRT to configure and I had to compile the resolvers with dnstap support and use socat to be able to transfer it using TCP/IP layer. Did I miss something? Thanks, Michal On 5/16/22 17:27, Bjørn Mork wrote: Michal Novotny writes: recently we've found a new project called DNS-Tap and it can be found on the DNSTap.info website [1]. There are several implementations available already - for Knot DNS, Unbound, BIND, CoreDNS and others - but they are not available on any stock router nor in any alternative firmware like OpenWRT. Yes, dnstap is nice. BIND and Knot are available in OpenWrt. I believe that will cover most users with an interest in resolvers, although it would be nice to have unbound too. Bjørn -- Michal Novotny Researcher michal.novo...@greycortex.com GREYCORTEX s.r.o. Purkynova 127, 61200 Brno Czech Republic www.greycortex.com ___ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
Re: Question about DNS-Tap integration
Bjørn Mork writes: > it would be nice to have unbound too. Which we do have, of course. Don't know why, but I managed to miss it the first time I looked. So all the inportant resolvers are covered in OpenWrt. I don't think you'll find many dnsmasq users among the set of people knowing what to do with dnstap... Bjørn ___ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
Re: Question about DNS-Tap integration
Michal Novotny writes: > recently we've found a new project called DNS-Tap and it can be found on > the DNSTap.info website [1]. There are several implementations available > already - for Knot DNS, Unbound, BIND, CoreDNS and others - but they are > not available on any stock router nor in any alternative firmware like > OpenWRT. Yes, dnstap is nice. BIND and Knot are available in OpenWrt. I believe that will cover most users with an interest in resolvers, although it would be nice to have unbound too. Bjørn ___ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
Re: Question about DNS-Tap integration
Hi, > My question is about whether are you planning to introduce the DNS-Tap > over TCP/IP to some version of the OpenWRT Router firmware. It's the emerging > technology which might be very useful in the future. you probably should direct these questions to the upstream DNSmasq project. > You might try to have a look to the link [1] and evaluate but having the > option to set DNS-Tap sender to some IP address and port using OpenWRT > configuration interface (LuCI) would be a pretty nice thing. LuCI integration will only happen once there is a base system facility in place. > Are you planning to add such a support? I don't think there's any specific plans. If at all, it might become available by an update on OpenWrt once it is integrated by upstream DNSmasq. Regards, Jo signature.asc Description: OpenPGP digital signature ___ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
Question about DNS-Tap integration
Hello OpenWRT Team, recently we've found a new project called DNS-Tap and it can be found on the DNSTap.info website [1]. There are several implementations available already - for Knot DNS, Unbound, BIND, CoreDNS and others - but they are not available on any stock router nor in any alternative firmware like OpenWRT. My question is about whether are you planning to introduce the DNS-Tap over TCP/IP to some version of the OpenWRT Router firmware. It's the emerging technology which might be very useful in the future. You might try to have a look to the link [1] and evaluate but having the option to set DNS-Tap sender to some IP address and port using OpenWRT configuration interface (LuCI) would be a pretty nice thing. Are you planning to add such a support? Thanks a lot, Michal Novotny GREYCORTEX s.r.o. -- Michal Novotny Researcher michal.novo...@greycortex.com GREYCORTEX s.r.o. Purkynova 127, 61200 Brno Czech Republic www.greycortex.com ___ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
