wok diff dnstop/description.txt @ rev 25176
updated python-formalchemy (1.5.5 -> 1.5.6)
| author | Hans-G?nter Theisgen |
|---|---|
| date | Fri Jul 01 17:52:21 2022 +0100 (23 months ago) |
| parents | |
| children |
line diff
1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000 1.2 +++ b/dnstop/description.txt Fri Jul 01 17:52:21 2022 +0100 1.3 @@ -0,0 +1,26 @@ 1.4 +Dnstop is a libpcap application (like tcpdump) that displays 1.5 +various tables of DNS traffic on your network. 1.6 +Currently dnstop displays tables of: 1.7 + 1.8 +* Source IP addresses 1.9 +* Destination IP addresses 1.10 +* Query types 1.11 +* Response codes 1.12 +* Opcodes 1.13 +* Top level domains 1.14 +* Second level domains 1.15 +* Third level domains 1.16 + 1.17 +Dnstop supports both IPv4 and IPv6 addresses. 1.18 + 1.19 +To help find especially undesirable DNS queries, dnstop provides 1.20 +a number of filters. The filters tell dnstop to display only the 1.21 +following types of queries: 1.22 + 1.23 +* For unknown or invalid TLDs 1.24 +* A queries where the query name is already an IP address 1.25 +* PTR queries for RFC1918 address space 1.26 +* Responses with code REFUSED 1.27 + 1.28 +Dnstop can either read packets from the live capture device, 1.29 +or from a tcpdump savefile.