Merging upstream version 2.2.0.
Signed-off-by: Daniel Baumann <daniel@debian.org>
This commit is contained in:
parent
d4077ab8a7
commit
72036a2e80
GPG key ID:
FBB4F0E80A80222F
113 changed files with 10899 additions and 6499 deletions
|
|
@ -17,7 +17,8 @@ bin_PROGRAMS = dnscap
|
|||
dnscap_SOURCES = args.c assert.c bpft.c daemon.c dnscap.c dump_cbor.c \
|
||||
dump_cds.c dump_dns.c dumper.c endpoint.c hashtbl.c iaddr.c log.c \
|
||||
network.c options.c pcaps.c sig.c tcpstate.c tcpreasm.c memzero.c \
|
||||
pcap-thread/pcap_thread.c pcap-thread/pcap_thread_ext_frag.c
|
||||
pcap-thread/pcap_thread.c pcap-thread/pcap_thread_ext_frag.c \
|
||||
ext/lookup3.c
|
||||
dist_dnscap_SOURCES = args.h bpft.h daemon.h dnscap_common.h dnscap.h \
|
||||
dump_cbor.h dump_cds.h dump_dns.h dumper.h endpoint.h hashtbl.h iaddr.h \
|
||||
log.h network.h options.h pcaps.h sig.h tcpstate.h tcpreasm.h memzero.h \
|
||||
|
|
|
|||
|
|
@ -1,7 +1,7 @@
|
|||
# Makefile.in generated by automake 1.16.1 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2018 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
|
|
@ -118,7 +118,8 @@ am_dnscap_OBJECTS = args.$(OBJEXT) assert.$(OBJEXT) bpft.$(OBJEXT) \
|
|||
pcaps.$(OBJEXT) sig.$(OBJEXT) tcpstate.$(OBJEXT) \
|
||||
tcpreasm.$(OBJEXT) memzero.$(OBJEXT) \
|
||||
pcap-thread/pcap_thread.$(OBJEXT) \
|
||||
pcap-thread/pcap_thread_ext_frag.$(OBJEXT)
|
||||
pcap-thread/pcap_thread_ext_frag.$(OBJEXT) \
|
||||
ext/lookup3.$(OBJEXT)
|
||||
dist_dnscap_OBJECTS =
|
||||
dnscap_OBJECTS = $(am_dnscap_OBJECTS) $(dist_dnscap_OBJECTS)
|
||||
am__DEPENDENCIES_1 =
|
||||
|
|
@ -152,7 +153,7 @@ am__depfiles_remade = ./$(DEPDIR)/args.Po ./$(DEPDIR)/assert.Po \
|
|||
./$(DEPDIR)/memzero.Po ./$(DEPDIR)/network.Po \
|
||||
./$(DEPDIR)/options.Po ./$(DEPDIR)/pcaps.Po ./$(DEPDIR)/sig.Po \
|
||||
./$(DEPDIR)/tcpreasm.Po ./$(DEPDIR)/tcpstate.Po \
|
||||
pcap-thread/$(DEPDIR)/pcap_thread.Po \
|
||||
ext/$(DEPDIR)/lookup3.Po pcap-thread/$(DEPDIR)/pcap_thread.Po \
|
||||
pcap-thread/$(DEPDIR)/pcap_thread_ext_frag.Po
|
||||
am__mv = mv -f
|
||||
COMPILE = $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) \
|
||||
|
|
@ -227,8 +228,8 @@ am__recursive_targets = \
|
|||
AM_RECURSIVE_TARGETS = $(am__recursive_targets:-recursive=) TAGS CTAGS \
|
||||
distdir distdir-am
|
||||
am__extra_recursive_targets = gcov-recursive
|
||||
am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) \
|
||||
$(LISP)config.h.in
|
||||
am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) \
|
||||
config.h.in
|
||||
# Read a list of newline-separated strings from the standard input,
|
||||
# and print each of them once, without duplicates. Input order is
|
||||
# *not* preserved.
|
||||
|
|
@ -245,8 +246,6 @@ am__define_uniq_tagged_files = \
|
|||
unique=`for i in $$list; do \
|
||||
if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \
|
||||
done | $(am__uniquify_input)`
|
||||
ETAGS = etags
|
||||
CTAGS = ctags
|
||||
DIST_SUBDIRS = $(SUBDIRS)
|
||||
am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/config.h.in \
|
||||
$(top_srcdir)/depcomp
|
||||
|
|
@ -289,6 +288,8 @@ CCDEPMODE = @CCDEPMODE@
|
|||
CFLAGS = @CFLAGS@
|
||||
CPP = @CPP@
|
||||
CPPFLAGS = @CPPFLAGS@
|
||||
CSCOPE = @CSCOPE@
|
||||
CTAGS = @CTAGS@
|
||||
CYGPATH_W = @CYGPATH_W@
|
||||
DEFS = @DEFS@
|
||||
DEPDIR = @DEPDIR@
|
||||
|
|
@ -299,6 +300,7 @@ ECHO_C = @ECHO_C@
|
|||
ECHO_N = @ECHO_N@
|
||||
ECHO_T = @ECHO_T@
|
||||
EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
GREP = @GREP@
|
||||
|
|
@ -418,7 +420,8 @@ EXTRA_DIST = dnscap.1.in
|
|||
dnscap_SOURCES = args.c assert.c bpft.c daemon.c dnscap.c dump_cbor.c \
|
||||
dump_cds.c dump_dns.c dumper.c endpoint.c hashtbl.c iaddr.c log.c \
|
||||
network.c options.c pcaps.c sig.c tcpstate.c tcpreasm.c memzero.c \
|
||||
pcap-thread/pcap_thread.c pcap-thread/pcap_thread_ext_frag.c
|
||||
pcap-thread/pcap_thread.c pcap-thread/pcap_thread_ext_frag.c \
|
||||
ext/lookup3.c
|
||||
|
||||
dist_dnscap_SOURCES = args.h bpft.h daemon.h dnscap_common.h dnscap.h \
|
||||
dump_cbor.h dump_cds.h dump_dns.h dumper.h endpoint.h hashtbl.h iaddr.h \
|
||||
|
|
@ -537,6 +540,14 @@ pcap-thread/pcap_thread.$(OBJEXT): pcap-thread/$(am__dirstamp) \
|
|||
pcap-thread/pcap_thread_ext_frag.$(OBJEXT): \
|
||||
pcap-thread/$(am__dirstamp) \
|
||||
pcap-thread/$(DEPDIR)/$(am__dirstamp)
|
||||
ext/$(am__dirstamp):
|
||||
@$(MKDIR_P) ext
|
||||
@: > ext/$(am__dirstamp)
|
||||
ext/$(DEPDIR)/$(am__dirstamp):
|
||||
@$(MKDIR_P) ext/$(DEPDIR)
|
||||
@: > ext/$(DEPDIR)/$(am__dirstamp)
|
||||
ext/lookup3.$(OBJEXT): ext/$(am__dirstamp) \
|
||||
ext/$(DEPDIR)/$(am__dirstamp)
|
||||
|
||||
dnscap$(EXEEXT): $(dnscap_OBJECTS) $(dnscap_DEPENDENCIES) $(EXTRA_dnscap_DEPENDENCIES)
|
||||
@rm -f dnscap$(EXEEXT)
|
||||
|
|
@ -544,6 +555,7 @@ dnscap$(EXEEXT): $(dnscap_OBJECTS) $(dnscap_DEPENDENCIES) $(EXTRA_dnscap_DEPENDE
|
|||
|
||||
mostlyclean-compile:
|
||||
-rm -f *.$(OBJEXT)
|
||||
-rm -f ext/*.$(OBJEXT)
|
||||
-rm -f pcap-thread/*.$(OBJEXT)
|
||||
|
||||
distclean-compile:
|
||||
|
|
@ -569,6 +581,7 @@ distclean-compile:
|
|||
@AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/sig.Po@am__quote@ # am--include-marker
|
||||
@AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/tcpreasm.Po@am__quote@ # am--include-marker
|
||||
@AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/tcpstate.Po@am__quote@ # am--include-marker
|
||||
@AMDEP_TRUE@@am__include@ @am__quote@ext/$(DEPDIR)/lookup3.Po@am__quote@ # am--include-marker
|
||||
@AMDEP_TRUE@@am__include@ @am__quote@pcap-thread/$(DEPDIR)/pcap_thread.Po@am__quote@ # am--include-marker
|
||||
@AMDEP_TRUE@@am__include@ @am__quote@pcap-thread/$(DEPDIR)/pcap_thread_ext_frag.Po@am__quote@ # am--include-marker
|
||||
|
||||
|
|
@ -748,7 +761,6 @@ cscopelist-am: $(am__tagged_files)
|
|||
|
||||
distclean-tags:
|
||||
-rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
|
|
@ -842,6 +854,8 @@ clean-generic:
|
|||
distclean-generic:
|
||||
-test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES)
|
||||
-rm -f ext/$(DEPDIR)/$(am__dirstamp)
|
||||
-rm -f ext/$(am__dirstamp)
|
||||
-rm -f pcap-thread/$(DEPDIR)/$(am__dirstamp)
|
||||
-rm -f pcap-thread/$(am__dirstamp)
|
||||
|
||||
|
|
@ -875,6 +889,7 @@ distclean: distclean-recursive
|
|||
-rm -f ./$(DEPDIR)/sig.Po
|
||||
-rm -f ./$(DEPDIR)/tcpreasm.Po
|
||||
-rm -f ./$(DEPDIR)/tcpstate.Po
|
||||
-rm -f ext/$(DEPDIR)/lookup3.Po
|
||||
-rm -f pcap-thread/$(DEPDIR)/pcap_thread.Po
|
||||
-rm -f pcap-thread/$(DEPDIR)/pcap_thread_ext_frag.Po
|
||||
-rm -f Makefile
|
||||
|
|
@ -946,6 +961,7 @@ maintainer-clean: maintainer-clean-recursive
|
|||
-rm -f ./$(DEPDIR)/sig.Po
|
||||
-rm -f ./$(DEPDIR)/tcpreasm.Po
|
||||
-rm -f ./$(DEPDIR)/tcpstate.Po
|
||||
-rm -f ext/$(DEPDIR)/lookup3.Po
|
||||
-rm -f pcap-thread/$(DEPDIR)/pcap_thread.Po
|
||||
-rm -f pcap-thread/$(DEPDIR)/pcap_thread_ext_frag.Po
|
||||
-rm -f Makefile
|
||||
|
|
|
|||
16
src/bpft.c
16
src/bpft.c
|
|
@ -41,7 +41,7 @@
|
|||
|
||||
void prepare_bpft(void)
|
||||
{
|
||||
unsigned udp10_mbs, udp10_mbc, udp11_mbc; //udp11_mbs
|
||||
unsigned udp10_mbs, udp10_mbc, udp11_mbc; // udp11_mbs
|
||||
text_list bpfl;
|
||||
text_ptr text;
|
||||
size_t len;
|
||||
|
|
@ -70,13 +70,13 @@ void prepare_bpft(void)
|
|||
}
|
||||
|
||||
/*
|
||||
* Model
|
||||
* (vlan) and (transport)
|
||||
* (vlan) and ((icmp) or (frags) or (dns))
|
||||
* (vlan) and ((icmp) or (frags) or ((ports) and (hosts)))
|
||||
* (vlan) and ((icmp) or (frags) or (((tcp) or (udp)) and (hosts)))
|
||||
* [(vlan) and] ( [(icmp) or] [(frags) or] ( ( [(tcp) or] (udp) ) [and (hosts)] ) )
|
||||
*/
|
||||
* Model
|
||||
* (vlan) and (transport)
|
||||
* (vlan) and ((icmp) or (frags) or (dns))
|
||||
* (vlan) and ((icmp) or (frags) or ((ports) and (hosts)))
|
||||
* (vlan) and ((icmp) or (frags) or (((tcp) or (udp)) and (hosts)))
|
||||
* [(vlan) and] ( [(icmp) or] [(frags) or] ( ( [(tcp) or] (udp) ) [and (hosts)] ) )
|
||||
*/
|
||||
|
||||
/* Make a BPF program to do early course kernel-level filtering. */
|
||||
INIT_LIST(bpfl);
|
||||
|
|
|
|||
|
|
@ -81,9 +81,6 @@
|
|||
/* Define to 1 if you have the <machine/endian.h> header file. */
|
||||
#undef HAVE_MACHINE_ENDIAN_H
|
||||
|
||||
/* Define to 1 if you have the <memory.h> header file. */
|
||||
#undef HAVE_MEMORY_H
|
||||
|
||||
/* Define to 1 if you have the <netdb.h> header file. */
|
||||
#undef HAVE_NETDB_H
|
||||
|
||||
|
|
@ -163,6 +160,9 @@
|
|||
/* Define to 1 if you have the <stdint.h> header file. */
|
||||
#undef HAVE_STDINT_H
|
||||
|
||||
/* Define to 1 if you have the <stdio.h> header file. */
|
||||
#undef HAVE_STDIO_H
|
||||
|
||||
/* Define to 1 if you have the <stdlib.h> header file. */
|
||||
#undef HAVE_STDLIB_H
|
||||
|
||||
|
|
@ -230,10 +230,13 @@
|
|||
your system. */
|
||||
#undef PTHREAD_CREATE_JOINABLE
|
||||
|
||||
/* Define to 1 if you have the ANSI C header files. */
|
||||
/* Define to 1 if all of the C90 standard headers exist (not just the ones
|
||||
required in a freestanding environment). This macro is provided for
|
||||
backward compatibility; new code need not use it. */
|
||||
#undef STDC_HEADERS
|
||||
|
||||
/* Define to 1 if you can safely include both <sys/time.h> and <time.h>. */
|
||||
/* Define to 1 if you can safely include both <sys/time.h> and <time.h>. This
|
||||
macro is obsolete. */
|
||||
#undef TIME_WITH_SYS_TIME
|
||||
|
||||
/* Define this to enable Linux seccomp-bpf sandbox. */
|
||||
|
|
|
|||
10
src/dnscap.h
10
src/dnscap.h
|
|
@ -297,9 +297,19 @@ struct tcpreasm {
|
|||
size_t bfb_at;
|
||||
};
|
||||
|
||||
struct tcpstate_key {
|
||||
iaddr* saddr;
|
||||
iaddr* daddr;
|
||||
unsigned sport;
|
||||
unsigned dport;
|
||||
};
|
||||
typedef struct tcpstate_key tcpstate_key;
|
||||
|
||||
struct tcpstate {
|
||||
LINK(struct tcpstate)
|
||||
link;
|
||||
tcpstate_key key;
|
||||
|
||||
iaddr saddr;
|
||||
iaddr daddr;
|
||||
uint16_t sport;
|
||||
|
|
|
|||
|
|
@ -116,10 +116,10 @@ typedef int filter_t(const char* descr,
|
|||
unsigned sport,
|
||||
unsigned dport,
|
||||
my_bpftimeval ts,
|
||||
const u_char* pkt_copy,
|
||||
const unsigned olen,
|
||||
const u_char* payload,
|
||||
const unsigned payloadlen);
|
||||
u_char* pkt_copy,
|
||||
unsigned olen,
|
||||
u_char* payload,
|
||||
unsigned payloadlen);
|
||||
|
||||
/*
|
||||
* Extensions
|
||||
|
|
|
|||
|
|
@ -44,8 +44,8 @@
|
|||
*/
|
||||
void output(const char* descr, iaddr from, iaddr to, uint8_t proto, unsigned flags,
|
||||
unsigned sport, unsigned dport, my_bpftimeval ts,
|
||||
const u_char* pkt_copy, const unsigned olen,
|
||||
const u_char* payload, const unsigned payloadlen)
|
||||
u_char* pkt_copy, const unsigned olen,
|
||||
u_char* payload, const unsigned payloadlen)
|
||||
{
|
||||
struct plugin* p;
|
||||
|
||||
|
|
|
|||
|
|
@ -39,8 +39,8 @@
|
|||
|
||||
void output(const char* descr, iaddr from, iaddr to, uint8_t proto, unsigned flags,
|
||||
unsigned sport, unsigned dport, my_bpftimeval ts,
|
||||
const u_char* pkt_copy, const unsigned olen,
|
||||
const u_char* payload, const unsigned payloadlen);
|
||||
u_char* pkt_copy, const unsigned olen,
|
||||
u_char* payload, const unsigned payloadlen);
|
||||
|
||||
int dumper_open(my_bpftimeval ts);
|
||||
int dumper_close(my_bpftimeval ts);
|
||||
|
|
|
|||
1235
src/ext/lookup3.c
Normal file
1235
src/ext/lookup3.c
Normal file
File diff suppressed because it is too large
Load diff
|
|
@ -67,4 +67,13 @@ void hash_remove(const void* key, hashtbl* tbl);
|
|||
void hash_free(hashtbl* tbl);
|
||||
void hash_destroy(hashtbl* tbl);
|
||||
|
||||
/*
|
||||
* found in lookup3.c
|
||||
*/
|
||||
#include <stddef.h>
|
||||
#include <stdint.h>
|
||||
extern uint32_t hashlittle(const void* key, size_t length, uint32_t initval);
|
||||
extern uint32_t hashbig(const void* key, size_t length, uint32_t initval);
|
||||
extern uint32_t hashword(const uint32_t* k, size_t length, uint32_t initval);
|
||||
|
||||
#endif // __dnscap_hashtbl_h
|
||||
|
|
|
|||
13
src/iaddr.c
13
src/iaddr.c
|
|
@ -66,3 +66,16 @@ int ia_equal(iaddr x, iaddr y)
|
|||
}
|
||||
return FALSE;
|
||||
}
|
||||
|
||||
int ia_equalp(iaddr* x, iaddr* y)
|
||||
{
|
||||
if (x->af != y->af)
|
||||
return FALSE;
|
||||
switch (x->af) {
|
||||
case AF_INET:
|
||||
return (x->u.a4.s_addr == y->u.a4.s_addr);
|
||||
case AF_INET6:
|
||||
return (memcmp(&x->u.a6.s6_addr, &y->u.a6.s6_addr, sizeof(x->u.a6.s6_addr)) == 0);
|
||||
}
|
||||
return FALSE;
|
||||
}
|
||||
|
|
|
|||
|
|
@ -39,5 +39,6 @@
|
|||
|
||||
const char* ia_str(iaddr ia);
|
||||
int ia_equal(iaddr x, iaddr y);
|
||||
int ia_equalp(iaddr* x, iaddr* y);
|
||||
|
||||
#endif /* __dnscap_iaddr_h */
|
||||
|
|
|
|||
|
|
@ -517,7 +517,7 @@ _match_rr(const ldns_rr_list* rrs, char** reason, int* negmatch, int* match, ldn
|
|||
/* Look at each RR in the section (or each QNAME in
|
||||
the question section). */
|
||||
myregex_ptr myregex;
|
||||
size_t i, n;
|
||||
size_t i, n;
|
||||
for (i = 0, n = ldns_rr_list_rr_count(rrs); i < n; i++) {
|
||||
ldns_rr* rr = ldns_rr_list_rr(rrs, i);
|
||||
if (!rr) {
|
||||
|
|
@ -536,7 +536,7 @@ _match_rr(const ldns_rr_list* rrs, char** reason, int* negmatch, int* match, ldn
|
|||
myregex = NEXT(myregex, link)) {
|
||||
|
||||
if (regexec(&myregex->reg, (char*)ldns_buffer_begin(buf), 0, NULL, 0) == 0) {
|
||||
if (myregex->not)
|
||||
if (myregex->not )
|
||||
(*negmatch)++;
|
||||
else
|
||||
(*match)++;
|
||||
|
|
@ -571,7 +571,7 @@ _filter_by_qname(const ldns_pkt* lpkt, char** reason)
|
|||
*/
|
||||
myregex_ptr myregex;
|
||||
for (myregex = HEAD(myregexes); myregex != NULL; myregex = NEXT(myregex, link)) {
|
||||
if (myregex->not) {
|
||||
if (myregex->not ) {
|
||||
negmatch = 0;
|
||||
} else {
|
||||
match = 0;
|
||||
|
|
@ -609,15 +609,15 @@ _filter_by_qname(const ldns_pkt* lpkt, char** reason)
|
|||
|
||||
void network_pkt2(const char* descr, my_bpftimeval ts, const pcap_thread_packet_t* packet, const u_char* payload, size_t length)
|
||||
{
|
||||
u_char pkt_copy[SNAPLEN], *pkt = pkt_copy;
|
||||
const u_char* dnspkt = 0;
|
||||
unsigned proto, sport, dport;
|
||||
iaddr from, to, initiator, responder;
|
||||
int response, m;
|
||||
unsigned flags = DNSCAP_OUTPUT_ISLAYER;
|
||||
tcpstate_ptr tcpstate = NULL;
|
||||
size_t len, dnslen = 0;
|
||||
HEADER dns;
|
||||
u_char pkt_copy[SNAPLEN], *pkt = pkt_copy;
|
||||
u_char* dnspkt = 0;
|
||||
unsigned proto, sport, dport;
|
||||
iaddr from, to, initiator, responder;
|
||||
int response, m;
|
||||
unsigned flags = DNSCAP_OUTPUT_ISLAYER;
|
||||
tcpstate_ptr tcpstate = NULL;
|
||||
size_t len, dnslen = 0;
|
||||
HEADER dns;
|
||||
|
||||
/* Make a writable copy of the packet and use that copy from now on. */
|
||||
if (length > SNAPLEN)
|
||||
|
|
@ -664,8 +664,8 @@ void network_pkt2(const char* descr, my_bpftimeval ts, const pcap_thread_packet_
|
|||
proto = IPPROTO_UDP;
|
||||
sport = packet->udphdr.uh_sport;
|
||||
dport = packet->udphdr.uh_dport;
|
||||
dnspkt = payload;
|
||||
dnslen = length;
|
||||
dnspkt = pkt;
|
||||
dnslen = len;
|
||||
flags |= DNSCAP_OUTPUT_ISDNS;
|
||||
} else if (packet->have_tcphdr) {
|
||||
uint32_t seq = packet->tcphdr.th_seq;
|
||||
|
|
@ -730,14 +730,7 @@ void network_pkt2(const char* descr, my_bpftimeval ts, const pcap_thread_packet_
|
|||
_curr_tcpstate = 0;
|
||||
|
||||
/* End of stream; deallocate the tcpstate. */
|
||||
if (tcpstate) {
|
||||
UNLINK(tcpstates, tcpstate, link);
|
||||
if (tcpstate->reasm) {
|
||||
tcpreasm_free(tcpstate->reasm);
|
||||
}
|
||||
free(tcpstate);
|
||||
tcpstate_count--;
|
||||
}
|
||||
tcpstate_free(tcpstate);
|
||||
return;
|
||||
}
|
||||
if (packet->tcphdr.th_flags & TH_SYN) {
|
||||
|
|
@ -1084,7 +1077,7 @@ void network_pkt(const char* descr, my_bpftimeval ts, unsigned pf,
|
|||
const u_char* opkt, size_t olen)
|
||||
{
|
||||
u_char pkt_copy[SNAPLEN], *pkt = pkt_copy;
|
||||
const u_char* dnspkt = 0;
|
||||
u_char* dnspkt = 0;
|
||||
unsigned proto, sport, dport;
|
||||
iaddr from, to, initiator, responder;
|
||||
struct ip6_hdr* ipv6;
|
||||
|
|
@ -1314,14 +1307,7 @@ void network_pkt(const char* descr, my_bpftimeval ts, unsigned pf,
|
|||
pkt_copy, olen, NULL, 0);
|
||||
_curr_tcpstate = 0;
|
||||
/* End of stream; deallocate the tcpstate. */
|
||||
if (tcpstate) {
|
||||
UNLINK(tcpstates, tcpstate, link);
|
||||
if (tcpstate->reasm) {
|
||||
tcpreasm_free(tcpstate->reasm);
|
||||
}
|
||||
free(tcpstate);
|
||||
tcpstate_count--;
|
||||
}
|
||||
tcpstate_free(tcpstate);
|
||||
goto network_pkt_end;
|
||||
}
|
||||
if (tcp->th_flags & TH_SYN) {
|
||||
|
|
@ -1448,8 +1434,8 @@ void network_pkt(const char* descr, my_bpftimeval ts, unsigned pf,
|
|||
tcpstate->lastdns = seq + tcpstate->dnslen;
|
||||
} else if (seqdiff == 0 && len > 2) {
|
||||
/* This is the first segment of the stream, and
|
||||
* contains the dnslen and dns header, so we can
|
||||
* filter on it. */
|
||||
* contains the dnslen and dns header, so we can
|
||||
* filter on it. */
|
||||
if (dumptrace >= 3)
|
||||
fprintf(stderr, "len+hdr\n");
|
||||
dnslen = tcpstate->dnslen = (pkt[0] << 8) | (pkt[1] << 0);
|
||||
|
|
@ -1461,7 +1447,7 @@ void network_pkt(const char* descr, my_bpftimeval ts, unsigned pf,
|
|||
tcpstate->lastdns = seq + 2 + tcpstate->dnslen;
|
||||
} else if (seqdiff == 0 && len == 2) {
|
||||
/* This is the first segment of the stream, but only
|
||||
* contains the dnslen. */
|
||||
* contains the dnslen. */
|
||||
if (dumptrace >= 3)
|
||||
fprintf(stderr, "len\n");
|
||||
tcpstate->dnslen = (pkt[0] << 8) | (pkt[1] << 0);
|
||||
|
|
@ -1478,7 +1464,7 @@ void network_pkt(const char* descr, my_bpftimeval ts, unsigned pf,
|
|||
goto network_pkt_end;
|
||||
} else if (seqdiff == 2) {
|
||||
/* This is not the first segment, but it does contain
|
||||
* the first dns header, so we can filter on it. */
|
||||
* the first dns header, so we can filter on it. */
|
||||
if (dumptrace >= 3)
|
||||
fprintf(stderr, "hdr\n");
|
||||
tcpstate->maxdiff = seqdiff + (uint32_t)len;
|
||||
|
|
|
|||
|
|
@ -104,7 +104,7 @@ static int dns_protocol_handler(tcpreasm_t* t, u_char* segment, uint16_t dnslen,
|
|||
}
|
||||
|
||||
t->bfb_buf[t->bfb_at++] = dnslen >> 8;
|
||||
t->bfb_buf[t->bfb_at++] = dnslen & 0xff; //NOSONAR
|
||||
t->bfb_buf[t->bfb_at++] = dnslen & 0xff; // NOSONAR
|
||||
memcpy(&t->bfb_buf[t->bfb_at], segment, dnslen);
|
||||
t->bfb_at += dnslen;
|
||||
t->seq_bfb += 2 + dnslen;
|
||||
|
|
|
|||
|
|
@ -38,11 +38,18 @@
|
|||
#include "iaddr.h"
|
||||
#include "log.h"
|
||||
#include "tcpreasm.h"
|
||||
#include "hashtbl.h"
|
||||
|
||||
#ifndef s6_addr32
|
||||
#define s6_addr32 __u6_addr.__u6_addr32
|
||||
#endif
|
||||
|
||||
#define MAX_TCP_IDLE_TIME 600
|
||||
#define MAX_TCP_IDLE_COUNT 4096
|
||||
#define TCP_GC_TIME 60
|
||||
|
||||
static hashtbl* _hash = 0;
|
||||
|
||||
tcpstate_ptr tcpstate_find(iaddr from, iaddr to, unsigned sport, unsigned dport, time_t t)
|
||||
{
|
||||
static time_t next_gc = 0;
|
||||
|
|
@ -59,12 +66,15 @@ tcpstate_ptr tcpstate_find(iaddr from, iaddr to, unsigned sport, unsigned dport,
|
|||
}
|
||||
#endif
|
||||
|
||||
for (tcpstate = HEAD(tcpstates);
|
||||
tcpstate != NULL;
|
||||
tcpstate = NEXT(tcpstate, link)) {
|
||||
if (ia_equal(tcpstate->saddr, from) && ia_equal(tcpstate->daddr, to) && tcpstate->sport == sport && tcpstate->dport == dport)
|
||||
break;
|
||||
}
|
||||
tcpstate_key key = {
|
||||
.saddr = &from,
|
||||
.daddr = &to,
|
||||
.sport = sport,
|
||||
.dport = dport
|
||||
};
|
||||
|
||||
tcpstate = hash_find(&key, _hash);
|
||||
|
||||
if (tcpstate != NULL) {
|
||||
tcpstate->last_use = t;
|
||||
if (tcpstate != HEAD(tcpstates)) {
|
||||
|
|
@ -77,10 +87,47 @@ tcpstate_ptr tcpstate_find(iaddr from, iaddr to, unsigned sport, unsigned dport,
|
|||
return tcpstate;
|
||||
}
|
||||
|
||||
unsigned int tcpstate_hash(const tcpstate_key* key)
|
||||
{
|
||||
uint32_t h = 0;
|
||||
|
||||
switch (key->saddr->af) {
|
||||
case AF_INET:
|
||||
h = hashword(&key->saddr->u.a4.s_addr, 1, h);
|
||||
break;
|
||||
case AF_INET6:
|
||||
h = hashword(key->saddr->u.a6.s6_addr32, 4, h);
|
||||
break;
|
||||
}
|
||||
|
||||
switch (key->daddr->af) {
|
||||
case AF_INET:
|
||||
h = hashword(&key->daddr->u.a4.s_addr, 1, h);
|
||||
break;
|
||||
case AF_INET6:
|
||||
h = hashword(key->daddr->u.a6.s6_addr32, 4, h);
|
||||
break;
|
||||
}
|
||||
|
||||
uint32_t p = (key->sport << 16) | (key->dport & 0xffff);
|
||||
return hashword(&p, 1, h);
|
||||
}
|
||||
|
||||
int tcpstate_cmp(const tcpstate_key* a, const tcpstate_key* b)
|
||||
{
|
||||
if (ia_equalp(a->saddr, b->saddr) && ia_equalp(a->daddr, b->daddr) && a->sport == b->sport && a->dport == b->dport)
|
||||
return 0;
|
||||
return 1;
|
||||
}
|
||||
|
||||
tcpstate_ptr _curr_tcpstate = 0;
|
||||
|
||||
tcpstate_ptr tcpstate_new(iaddr from, iaddr to, unsigned sport, unsigned dport)
|
||||
{
|
||||
if (!_hash) {
|
||||
_hash = hash_create(65535, (hashkey_func)tcpstate_hash, (hashkeycmp_func)tcpstate_cmp, 0);
|
||||
assert(_hash);
|
||||
}
|
||||
tcpstate_ptr tcpstate = calloc(1, sizeof *tcpstate);
|
||||
if (tcpstate == NULL) {
|
||||
/* Out of memory; recycle the least recently used */
|
||||
|
|
@ -95,6 +142,7 @@ tcpstate_ptr tcpstate_new(iaddr from, iaddr to, unsigned sport, unsigned dport)
|
|||
if (_curr_tcpstate == tcpstate) {
|
||||
_curr_tcpstate = 0;
|
||||
}
|
||||
hash_remove(&tcpstate->key, _hash);
|
||||
memset(tcpstate, 0, sizeof(*tcpstate));
|
||||
} else {
|
||||
tcpstate_count++;
|
||||
|
|
@ -105,6 +153,13 @@ tcpstate_ptr tcpstate_new(iaddr from, iaddr to, unsigned sport, unsigned dport)
|
|||
tcpstate->dport = dport;
|
||||
INIT_LINK(tcpstate, link);
|
||||
PREPEND(tcpstates, tcpstate, link);
|
||||
|
||||
tcpstate->key.saddr = &tcpstate->saddr;
|
||||
tcpstate->key.daddr = &tcpstate->daddr;
|
||||
tcpstate->key.sport = sport;
|
||||
tcpstate->key.dport = dport;
|
||||
hash_add(&tcpstate->key, tcpstate, _hash);
|
||||
|
||||
return tcpstate;
|
||||
}
|
||||
|
||||
|
|
@ -124,6 +179,7 @@ void tcpstate_discard(tcpstate_ptr tcpstate, const char* msg)
|
|||
if (tcpstate->reasm) {
|
||||
tcpreasm_free(tcpstate->reasm);
|
||||
}
|
||||
hash_remove(&tcpstate->key, _hash);
|
||||
free(tcpstate);
|
||||
if (_curr_tcpstate == tcpstate) {
|
||||
_curr_tcpstate = 0;
|
||||
|
|
@ -149,3 +205,19 @@ void tcpstate_reset(tcpstate_ptr tcpstate, const char* msg)
|
|||
}
|
||||
}
|
||||
}
|
||||
|
||||
void tcpstate_free(tcpstate_ptr tcpstate)
|
||||
{
|
||||
if (tcpstate) {
|
||||
UNLINK(tcpstates, tcpstate, link);
|
||||
if (tcpstate->reasm) {
|
||||
tcpreasm_free(tcpstate->reasm);
|
||||
}
|
||||
hash_remove(&tcpstate->key, _hash);
|
||||
free(tcpstate);
|
||||
if (_curr_tcpstate == tcpstate) {
|
||||
_curr_tcpstate = 0;
|
||||
}
|
||||
tcpstate_count--;
|
||||
}
|
||||
}
|
||||
|
|
@ -42,5 +42,6 @@ tcpstate_ptr tcpstate_new(iaddr from, iaddr to, unsigned sport, unsigned dport);
|
|||
void tcpstate_discard(tcpstate_ptr tcpstate, const char* msg);
|
||||
tcpstate_ptr tcpstate_getcurr(void);
|
||||
void tcpstate_reset(tcpstate_ptr tcpstate, const char* msg);
|
||||
void tcpstate_free(tcpstate_ptr tcpstate);
|
||||
|
||||
#endif /* __dnscap_tcpstate_h */
|
||||
|
|
|
|||
|
|
@ -1,10 +1,9 @@
|
|||
MAINTAINERCLEANFILES = $(srcdir)/Makefile.in
|
||||
|
||||
CLEANFILES = test*.log test*.trs \
|
||||
*.pcap-dist \
|
||||
dns.out \
|
||||
no-layers.out layers.out \
|
||||
frags.out \
|
||||
frags.out frags.gold \
|
||||
padding-no-layers.out padding-layers.out \
|
||||
vlan11.out \
|
||||
dnspad.out \
|
||||
|
|
@ -16,46 +15,12 @@ CLEANFILES = test*.log test*.trs \
|
|||
test12.out test12.20161020.152301.075993.gz \
|
||||
test13.out \
|
||||
test14.out \
|
||||
test_regex_match.out
|
||||
test_regex_match.out \
|
||||
edns.out
|
||||
|
||||
TESTS = test1.sh test2.sh test3.sh test4.sh test5.sh test6.sh test7.sh \
|
||||
test8.sh test9.sh test10.sh test11.sh test12.sh test13.sh test14.sh \
|
||||
test_regex_match.sh
|
||||
|
||||
test1.sh: dns.pcap-dist
|
||||
|
||||
test2.sh: dns.pcap-dist
|
||||
|
||||
test3.sh: frags.pcap-dist
|
||||
|
||||
test4.sh: 1qtcppadd.pcap-dist
|
||||
|
||||
test5.sh: vlan11.pcap-dist
|
||||
|
||||
test6.sh: dnspad.pcap-dist
|
||||
|
||||
test7.sh: 1qtcpnosyn.pcap-dist dnso1tcp.pcap-dist \
|
||||
do1t-nosyn-1nolen.pcap-dist dnso1tcp-midmiss.pcap-dist
|
||||
|
||||
test8.sh: dnsotcp-many1pkt.pcap-dist dnsotcp-manyopkts.pcap-dist \
|
||||
dnso1tcp-bighole.pcap-dist
|
||||
|
||||
test9.sh: dns.pcap-dist
|
||||
|
||||
test10.sh: dns6.pcap-dist
|
||||
|
||||
test11.sh: dns.pcap-dist
|
||||
|
||||
test12.sh: dns.pcap-dist
|
||||
|
||||
test13.sh: dns.pcap-dist
|
||||
|
||||
test14.sh: dns.pcap-dist
|
||||
|
||||
test_regex_match.sh: dns.pcap-dist
|
||||
|
||||
.pcap.pcap-dist:
|
||||
cp "$<" "$@"
|
||||
test_regex_match.sh test_edns.sh
|
||||
|
||||
EXTRA_DIST = $(TESTS) \
|
||||
dns.gold dns.pcap \
|
||||
|
|
@ -70,4 +35,5 @@ EXTRA_DIST = $(TESTS) \
|
|||
test9.gold \
|
||||
dns6.pcap test10.gold \
|
||||
test14.gold \
|
||||
test_regex_match.gold
|
||||
test_regex_match.gold \
|
||||
edns.pcap edns.gold
|
||||
|
|
|
|||
|
|
@ -1,7 +1,7 @@
|
|||
# Makefile.in generated by automake 1.16.1 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2018 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
|
|
@ -308,6 +308,7 @@ am__set_TESTS_bases = \
|
|||
bases='$(TEST_LOGS)'; \
|
||||
bases=`for i in $$bases; do echo $$i; done | sed 's/\.log$$//'`; \
|
||||
bases=`echo $$bases`
|
||||
AM_TESTSUITE_SUMMARY_HEADER = ' for $(PACKAGE_STRING)'
|
||||
RECHECK_LOGS = $(TEST_LOGS)
|
||||
AM_RECURSIVE_TARGETS = check recheck
|
||||
TEST_SUITE_LOG = test-suite.log
|
||||
|
|
@ -345,6 +346,8 @@ CCDEPMODE = @CCDEPMODE@
|
|||
CFLAGS = @CFLAGS@
|
||||
CPP = @CPP@
|
||||
CPPFLAGS = @CPPFLAGS@
|
||||
CSCOPE = @CSCOPE@
|
||||
CTAGS = @CTAGS@
|
||||
CYGPATH_W = @CYGPATH_W@
|
||||
DEFS = @DEFS@
|
||||
DEPDIR = @DEPDIR@
|
||||
|
|
@ -355,6 +358,7 @@ ECHO_C = @ECHO_C@
|
|||
ECHO_N = @ECHO_N@
|
||||
ECHO_T = @ECHO_T@
|
||||
EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
GREP = @GREP@
|
||||
|
|
@ -462,10 +466,9 @@ top_builddir = @top_builddir@
|
|||
top_srcdir = @top_srcdir@
|
||||
MAINTAINERCLEANFILES = $(srcdir)/Makefile.in
|
||||
CLEANFILES = test*.log test*.trs \
|
||||
*.pcap-dist \
|
||||
dns.out \
|
||||
no-layers.out layers.out \
|
||||
frags.out \
|
||||
frags.out frags.gold \
|
||||
padding-no-layers.out padding-layers.out \
|
||||
vlan11.out \
|
||||
dnspad.out \
|
||||
|
|
@ -477,11 +480,12 @@ CLEANFILES = test*.log test*.trs \
|
|||
test12.out test12.20161020.152301.075993.gz \
|
||||
test13.out \
|
||||
test14.out \
|
||||
test_regex_match.out
|
||||
test_regex_match.out \
|
||||
edns.out
|
||||
|
||||
TESTS = test1.sh test2.sh test3.sh test4.sh test5.sh test6.sh test7.sh \
|
||||
test8.sh test9.sh test10.sh test11.sh test12.sh test13.sh test14.sh \
|
||||
test_regex_match.sh
|
||||
test_regex_match.sh test_edns.sh
|
||||
|
||||
EXTRA_DIST = $(TESTS) \
|
||||
dns.gold dns.pcap \
|
||||
|
|
@ -496,12 +500,13 @@ EXTRA_DIST = $(TESTS) \
|
|||
test9.gold \
|
||||
dns6.pcap test10.gold \
|
||||
test14.gold \
|
||||
test_regex_match.gold
|
||||
test_regex_match.gold \
|
||||
edns.pcap edns.gold
|
||||
|
||||
all: all-am
|
||||
|
||||
.SUFFIXES:
|
||||
.SUFFIXES: .log .pcap .pcap-dist .test .test$(EXEEXT) .trs
|
||||
.SUFFIXES: .log .test .test$(EXEEXT) .trs
|
||||
$(srcdir)/Makefile.in: $(srcdir)/Makefile.am $(am__configure_deps)
|
||||
@for dep in $?; do \
|
||||
case '$(am__configure_deps)' in \
|
||||
|
|
@ -652,7 +657,7 @@ $(TEST_SUITE_LOG): $(TEST_LOGS)
|
|||
test x"$$VERBOSE" = x || cat $(TEST_SUITE_LOG); \
|
||||
fi; \
|
||||
echo "$${col}$$br$${std}"; \
|
||||
echo "$${col}Testsuite summary for $(PACKAGE_STRING)$${std}"; \
|
||||
echo "$${col}Testsuite summary"$(AM_TESTSUITE_SUMMARY_HEADER)"$${std}"; \
|
||||
echo "$${col}$$br$${std}"; \
|
||||
create_testsuite_report --maybe-color; \
|
||||
echo "$$col$$br$$std"; \
|
||||
|
|
@ -791,6 +796,13 @@ test_regex_match.sh.log: test_regex_match.sh
|
|||
--log-file $$b.log --trs-file $$b.trs \
|
||||
$(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \
|
||||
"$$tst" $(AM_TESTS_FD_REDIRECT)
|
||||
test_edns.sh.log: test_edns.sh
|
||||
@p='test_edns.sh'; \
|
||||
b='test_edns.sh'; \
|
||||
$(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \
|
||||
--log-file $$b.log --trs-file $$b.trs \
|
||||
$(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \
|
||||
"$$tst" $(AM_TESTS_FD_REDIRECT)
|
||||
.test.log:
|
||||
@p='$<'; \
|
||||
$(am__set_b); \
|
||||
|
|
@ -805,7 +817,6 @@ test_regex_match.sh.log: test_regex_match.sh
|
|||
@am__EXEEXT_TRUE@ --log-file $$b.log --trs-file $$b.trs \
|
||||
@am__EXEEXT_TRUE@ $(am__common_driver_flags) $(AM_TEST_LOG_DRIVER_FLAGS) $(TEST_LOG_DRIVER_FLAGS) -- $(TEST_LOG_COMPILE) \
|
||||
@am__EXEEXT_TRUE@ "$$tst" $(AM_TESTS_FD_REDIRECT)
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
|
|
@ -967,41 +978,6 @@ uninstall-am:
|
|||
.PRECIOUS: Makefile
|
||||
|
||||
|
||||
test1.sh: dns.pcap-dist
|
||||
|
||||
test2.sh: dns.pcap-dist
|
||||
|
||||
test3.sh: frags.pcap-dist
|
||||
|
||||
test4.sh: 1qtcppadd.pcap-dist
|
||||
|
||||
test5.sh: vlan11.pcap-dist
|
||||
|
||||
test6.sh: dnspad.pcap-dist
|
||||
|
||||
test7.sh: 1qtcpnosyn.pcap-dist dnso1tcp.pcap-dist \
|
||||
do1t-nosyn-1nolen.pcap-dist dnso1tcp-midmiss.pcap-dist
|
||||
|
||||
test8.sh: dnsotcp-many1pkt.pcap-dist dnsotcp-manyopkts.pcap-dist \
|
||||
dnso1tcp-bighole.pcap-dist
|
||||
|
||||
test9.sh: dns.pcap-dist
|
||||
|
||||
test10.sh: dns6.pcap-dist
|
||||
|
||||
test11.sh: dns.pcap-dist
|
||||
|
||||
test12.sh: dns.pcap-dist
|
||||
|
||||
test13.sh: dns.pcap-dist
|
||||
|
||||
test14.sh: dns.pcap-dist
|
||||
|
||||
test_regex_match.sh: dns.pcap-dist
|
||||
|
||||
.pcap.pcap-dist:
|
||||
cp "$<" "$@"
|
||||
|
||||
# Tell versions [3.59,3.63) of GNU make to not export all variables.
|
||||
# Otherwise a system limit (for SysV at least) may be exceeded.
|
||||
.NOEXPORT:
|
||||
|
|
|
|||
|
|
@ -1,8 +1,8 @@
|
|||
[56] 2016-10-20 15:23:01.075993 [#0 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:01.075993 [#0 dns.pcap 4095] \
|
||||
[172.17.0.10].53199 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:01.077982 [#1 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:01.077982 [#1 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].53199 \
|
||||
dns QUERY,NOERROR,59311,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -15,11 +15,11 @@
|
|||
ns1.google.com.,IN,A,331882,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157880,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157880,216.239.38.10
|
||||
[73] 2016-10-20 15:23:01.082865 [#2 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:23:01.082865 [#2 dns.pcap 4095] \
|
||||
[172.17.0.10].57822 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,35665,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:23:01.084107 [#3 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:23:01.084107 [#3 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].57822 \
|
||||
dns QUERY,NOERROR,35665,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -33,11 +33,11 @@
|
|||
ns3.google.com.,IN,A,157880,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157880,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157880,216.239.34.10
|
||||
[56] 2016-10-20 15:23:01.087291 [#4 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:01.087291 [#4 dns.pcap 4095] \
|
||||
[172.17.0.10].40043 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,5337,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:01.088733 [#5 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:01.088733 [#5 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].40043 \
|
||||
dns QUERY,NOERROR,5337,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -50,11 +50,11 @@
|
|||
ns1.google.com.,IN,A,331882,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157880,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157880,216.239.38.10
|
||||
[56] 2016-10-20 15:23:10.322117 [#6 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:10.322117 [#6 dns.pcap 4095] \
|
||||
[172.17.0.10].37953 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22982,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:10.323399 [#7 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:10.323399 [#7 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].37953 \
|
||||
dns QUERY,NOERROR,22982,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -67,11 +67,11 @@
|
|||
ns1.google.com.,IN,A,331872,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157870,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157870,216.239.38.10
|
||||
[73] 2016-10-20 15:23:10.328324 [#8 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:23:10.328324 [#8 dns.pcap 4095] \
|
||||
[172.17.0.10].48658 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,18718,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:23:10.329572 [#9 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:23:10.329572 [#9 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].48658 \
|
||||
dns QUERY,NOERROR,18718,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -85,11 +85,11 @@
|
|||
ns3.google.com.,IN,A,157870,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157870,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157870,216.239.34.10
|
||||
[56] 2016-10-20 15:23:52.860937 [#10 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:52.860937 [#10 dns.pcap 4095] \
|
||||
[172.17.0.10].40953 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22531,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:52.863771 [#11 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:52.863771 [#11 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].40953 \
|
||||
dns QUERY,NOERROR,22531,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -102,11 +102,11 @@
|
|||
ns1.google.com.,IN,A,331830,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157828,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157828,216.239.38.10
|
||||
[56] 2016-10-20 15:23:59.083869 [#12 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:59.083869 [#12 dns.pcap 4095] \
|
||||
[172.17.0.10].45174 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,58510,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:59.086104 [#13 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:59.086104 [#13 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].45174 \
|
||||
dns QUERY,NOERROR,58510,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -119,11 +119,11 @@
|
|||
ns1.google.com.,IN,A,331824,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157822,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157822,216.239.38.10
|
||||
[73] 2016-10-20 15:23:59.090911 [#14 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:23:59.090911 [#14 dns.pcap 4095] \
|
||||
[172.17.0.10].33916 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45248,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:23:59.092204 [#15 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:23:59.092204 [#15 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].33916 \
|
||||
dns QUERY,NOERROR,45248,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -137,11 +137,11 @@
|
|||
ns3.google.com.,IN,A,157822,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157822,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157822,216.239.34.10
|
||||
[56] 2016-10-20 15:24:04.323868 [#16 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:04.323868 [#16 dns.pcap 4095] \
|
||||
[172.17.0.10].43559 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,49483,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:04.325597 [#17 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:04.325597 [#17 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].43559 \
|
||||
dns QUERY,NOERROR,49483,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -154,11 +154,11 @@
|
|||
ns1.google.com.,IN,A,331818,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157816,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157816,216.239.38.10
|
||||
[56] 2016-10-20 15:24:06.332239 [#18 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:06.332239 [#18 dns.pcap 4095] \
|
||||
[172.17.0.10].54859 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,31669,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:06.333743 [#19 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:06.333743 [#19 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].54859 \
|
||||
dns QUERY,NOERROR,31669,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -171,11 +171,11 @@
|
|||
ns1.google.com.,IN,A,331816,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157814,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157814,216.239.38.10
|
||||
[73] 2016-10-20 15:24:06.339145 [#20 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:06.339145 [#20 dns.pcap 4095] \
|
||||
[172.17.0.10].58176 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25433,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:06.340820 [#21 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:06.340820 [#21 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].58176 \
|
||||
dns QUERY,NOERROR,25433,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -189,11 +189,11 @@
|
|||
ns3.google.com.,IN,A,157814,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157814,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157814,216.239.34.10
|
||||
[56] 2016-10-20 15:24:07.346429 [#22 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:07.346429 [#22 dns.pcap 4095] \
|
||||
[172.17.0.10].41266 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,63798,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:07.348160 [#23 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:07.348160 [#23 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].41266 \
|
||||
dns QUERY,NOERROR,63798,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -206,11 +206,11 @@
|
|||
ns1.google.com.,IN,A,331815,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157813,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157813,216.239.38.10
|
||||
[73] 2016-10-20 15:24:07.353123 [#24 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:07.353123 [#24 dns.pcap 4095] \
|
||||
[172.17.0.10].34607 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,8470,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:07.354682 [#25 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:07.354682 [#25 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].34607 \
|
||||
dns QUERY,NOERROR,8470,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -224,11 +224,11 @@
|
|||
ns3.google.com.,IN,A,157813,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157813,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157813,216.239.34.10
|
||||
[56] 2016-10-20 15:24:08.360528 [#26 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:08.360528 [#26 dns.pcap 4095] \
|
||||
[172.17.0.10].60437 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,60258,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:08.362206 [#27 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:08.362206 [#27 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].60437 \
|
||||
dns QUERY,NOERROR,60258,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -241,11 +241,11 @@
|
|||
ns1.google.com.,IN,A,331814,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157812,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157812,216.239.38.10
|
||||
[73] 2016-10-20 15:24:08.368516 [#28 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:08.368516 [#28 dns.pcap 4095] \
|
||||
[172.17.0.10].37149 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,44985,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:08.370119 [#29 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:08.370119 [#29 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].37149 \
|
||||
dns QUERY,NOERROR,44985,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -259,11 +259,11 @@
|
|||
ns3.google.com.,IN,A,157812,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157812,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157812,216.239.34.10
|
||||
[56] 2016-10-20 15:24:09.375942 [#30 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:09.375942 [#30 dns.pcap 4095] \
|
||||
[172.17.0.10].53820 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45512,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:09.378425 [#31 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:09.378425 [#31 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].53820 \
|
||||
dns QUERY,NOERROR,45512,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -276,11 +276,11 @@
|
|||
ns1.google.com.,IN,A,331813,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157811,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157811,216.239.38.10
|
||||
[73] 2016-10-20 15:24:09.384057 [#32 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:09.384057 [#32 dns.pcap 4095] \
|
||||
[172.17.0.10].52368 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22980,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:09.385463 [#33 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:09.385463 [#33 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].52368 \
|
||||
dns QUERY,NOERROR,22980,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -294,11 +294,11 @@
|
|||
ns3.google.com.,IN,A,157811,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157811,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157811,216.239.34.10
|
||||
[56] 2016-10-20 15:24:10.391358 [#34 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:10.391358 [#34 dns.pcap 4095] \
|
||||
[172.17.0.10].47637 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,1834,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:10.392886 [#35 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:10.392886 [#35 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].47637 \
|
||||
dns QUERY,NOERROR,1834,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -311,11 +311,11 @@
|
|||
ns1.google.com.,IN,A,331812,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157810,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157810,216.239.38.10
|
||||
[73] 2016-10-20 15:24:10.398099 [#36 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:10.398099 [#36 dns.pcap 4095] \
|
||||
[172.17.0.10].34426 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25431,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:10.400317 [#37 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:10.400317 [#37 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].34426 \
|
||||
dns QUERY,NOERROR,25431,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -329,11 +329,11 @@
|
|||
ns3.google.com.,IN,A,157810,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157810,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157810,216.239.34.10
|
||||
[56] 2016-10-20 15:24:11.406297 [#38 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:11.406297 [#38 dns.pcap 4095] \
|
||||
[172.17.0.10].41059 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,48432,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:11.407460 [#39 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:11.407460 [#39 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].41059 \
|
||||
dns QUERY,NOERROR,48432,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -346,11 +346,11 @@
|
|||
ns1.google.com.,IN,A,331811,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157809,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157809,216.239.38.10
|
||||
[73] 2016-10-20 15:24:11.412133 [#40 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:11.412133 [#40 dns.pcap 4095] \
|
||||
[172.17.0.10].51181 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,47411,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:11.413370 [#41 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:11.413370 [#41 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].51181 \
|
||||
dns QUERY,NOERROR,47411,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -364,11 +364,11 @@
|
|||
ns3.google.com.,IN,A,157809,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157809,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157809,216.239.34.10
|
||||
[56] 2016-10-20 15:24:12.419936 [#42 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:12.419936 [#42 dns.pcap 4095] \
|
||||
[172.17.0.10].32976 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,12038,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:12.421228 [#43 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:12.421228 [#43 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].32976 \
|
||||
dns QUERY,NOERROR,12038,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -381,11 +381,11 @@
|
|||
ns1.google.com.,IN,A,331810,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157808,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157808,216.239.38.10
|
||||
[56] 2016-10-20 15:24:14.428524 [#44 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:14.428524 [#44 dns.pcap 4095] \
|
||||
[172.17.0.10].53467 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,11614,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:14.429863 [#45 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:14.429863 [#45 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].53467 \
|
||||
dns QUERY,NOERROR,11614,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -398,11 +398,11 @@
|
|||
ns1.google.com.,IN,A,331808,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157806,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157806,216.239.38.10
|
||||
[56] 2016-10-20 15:24:16.435733 [#46 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:16.435733 [#46 dns.pcap 4095] \
|
||||
[172.17.0.10].41532 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59173,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:16.437471 [#47 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:16.437471 [#47 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].41532 \
|
||||
dns QUERY,NOERROR,59173,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -415,11 +415,11 @@
|
|||
ns1.google.com.,IN,A,331806,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157804,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157804,216.239.38.10
|
||||
[56] 2016-10-20 15:24:18.445519 [#48 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:18.445519 [#48 dns.pcap 4095] \
|
||||
[172.17.0.10].44982 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45535,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:18.446775 [#49 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:18.446775 [#49 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].44982 \
|
||||
dns QUERY,NOERROR,45535,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -432,11 +432,11 @@
|
|||
ns1.google.com.,IN,A,331804,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157802,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157802,216.239.38.10
|
||||
[73] 2016-10-20 15:24:18.452451 [#50 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:18.452451 [#50 dns.pcap 4095] \
|
||||
[172.17.0.10].40224 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,60808,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:18.454030 [#51 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:18.454030 [#51 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].40224 \
|
||||
dns QUERY,NOERROR,60808,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -450,11 +450,11 @@
|
|||
ns3.google.com.,IN,A,157802,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157802,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157802,216.239.34.10
|
||||
[56] 2016-10-20 15:24:19.460087 [#52 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:19.460087 [#52 dns.pcap 4095] \
|
||||
[172.17.0.10].45658 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,64325,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:19.462224 [#53 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:19.462224 [#53 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].45658 \
|
||||
dns QUERY,NOERROR,64325,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -467,11 +467,11 @@
|
|||
ns1.google.com.,IN,A,331803,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157801,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157801,216.239.38.10
|
||||
[73] 2016-10-20 15:24:19.467324 [#54 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:19.467324 [#54 dns.pcap 4095] \
|
||||
[172.17.0.10].60457 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25543,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:19.468895 [#55 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:19.468895 [#55 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].60457 \
|
||||
dns QUERY,NOERROR,25543,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -485,11 +485,11 @@
|
|||
ns3.google.com.,IN,A,157801,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157801,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157801,216.239.34.10
|
||||
[56] 2016-10-20 15:24:20.475086 [#56 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:20.475086 [#56 dns.pcap 4095] \
|
||||
[172.17.0.10].59762 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,20736,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:20.476841 [#57 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:20.476841 [#57 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].59762 \
|
||||
dns QUERY,NOERROR,20736,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -502,11 +502,11 @@
|
|||
ns1.google.com.,IN,A,331802,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157800,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157800,216.239.38.10
|
||||
[73] 2016-10-20 15:24:20.482188 [#58 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:20.482188 [#58 dns.pcap 4095] \
|
||||
[172.17.0.10].56022 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25911,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:20.483927 [#59 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:20.483927 [#59 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].56022 \
|
||||
dns QUERY,NOERROR,25911,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -520,11 +520,11 @@
|
|||
ns3.google.com.,IN,A,157800,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157800,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157800,216.239.34.10
|
||||
[56] 2016-10-20 15:24:21.489468 [#60 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:21.489468 [#60 dns.pcap 4095] \
|
||||
[172.17.0.10].37669 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,64358,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:21.490573 [#61 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:21.490573 [#61 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].37669 \
|
||||
dns QUERY,NOERROR,64358,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -537,11 +537,11 @@
|
|||
ns1.google.com.,IN,A,331801,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157799,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157799,216.239.38.10
|
||||
[73] 2016-10-20 15:24:21.495324 [#62 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:21.495324 [#62 dns.pcap 4095] \
|
||||
[172.17.0.10].42978 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,37698,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:21.496815 [#63 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:21.496815 [#63 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].42978 \
|
||||
dns QUERY,NOERROR,37698,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -555,11 +555,11 @@
|
|||
ns3.google.com.,IN,A,157799,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157799,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157799,216.239.34.10
|
||||
[56] 2016-10-20 15:24:22.502667 [#64 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:22.502667 [#64 dns.pcap 4095] \
|
||||
[172.17.0.10].49829 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,54706,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:22.504738 [#65 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:22.504738 [#65 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].49829 \
|
||||
dns QUERY,NOERROR,54706,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -572,11 +572,11 @@
|
|||
ns1.google.com.,IN,A,331800,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157798,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157798,216.239.38.10
|
||||
[73] 2016-10-20 15:24:22.510176 [#66 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:22.510176 [#66 dns.pcap 4095] \
|
||||
[172.17.0.10].50599 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,32142,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:22.511746 [#67 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:22.511746 [#67 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].50599 \
|
||||
dns QUERY,NOERROR,32142,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -590,11 +590,11 @@
|
|||
ns3.google.com.,IN,A,157798,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157798,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157798,216.239.34.10
|
||||
[56] 2016-10-20 15:24:23.520203 [#68 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:23.520203 [#68 dns.pcap 4095] \
|
||||
[172.17.0.10].44980 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,41808,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:23.521976 [#69 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:23.521976 [#69 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].44980 \
|
||||
dns QUERY,NOERROR,41808,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -607,11 +607,11 @@
|
|||
ns1.google.com.,IN,A,331799,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157797,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157797,216.239.38.10
|
||||
[73] 2016-10-20 15:24:23.527449 [#70 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:23.527449 [#70 dns.pcap 4095] \
|
||||
[172.17.0.10].60063 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,18886,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:23.529385 [#71 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:23.529385 [#71 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].60063 \
|
||||
dns QUERY,NOERROR,18886,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -625,11 +625,11 @@
|
|||
ns3.google.com.,IN,A,157797,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157797,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157797,216.239.34.10
|
||||
[56] 2016-10-20 15:24:24.537264 [#72 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:24.537264 [#72 dns.pcap 4095] \
|
||||
[172.17.0.10].42042 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,10624,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:24.539398 [#73 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:24.539398 [#73 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].42042 \
|
||||
dns QUERY,NOERROR,10624,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -642,11 +642,11 @@
|
|||
ns1.google.com.,IN,A,331798,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157796,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157796,216.239.38.10
|
||||
[73] 2016-10-20 15:24:24.544538 [#74 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:24.544538 [#74 dns.pcap 4095] \
|
||||
[172.17.0.10].60469 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,33139,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:24.546172 [#75 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:24.546172 [#75 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].60469 \
|
||||
dns QUERY,NOERROR,33139,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -660,11 +660,11 @@
|
|||
ns3.google.com.,IN,A,157796,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157796,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157796,216.239.34.10
|
||||
[56] 2016-10-20 15:24:25.554744 [#76 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:25.554744 [#76 dns.pcap 4095] \
|
||||
[172.17.0.10].45703 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,61415,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:25.556513 [#77 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:25.556513 [#77 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].45703 \
|
||||
dns QUERY,NOERROR,61415,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -677,11 +677,11 @@
|
|||
ns1.google.com.,IN,A,331797,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157795,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157795,216.239.38.10
|
||||
[73] 2016-10-20 15:24:25.562608 [#78 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:25.562608 [#78 dns.pcap 4095] \
|
||||
[172.17.0.10].33507 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59258,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:25.564509 [#79 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:25.564509 [#79 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].33507 \
|
||||
dns QUERY,NOERROR,59258,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -695,11 +695,11 @@
|
|||
ns3.google.com.,IN,A,157795,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157795,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157795,216.239.34.10
|
||||
[56] 2016-10-20 15:24:26.572784 [#80 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:26.572784 [#80 dns.pcap 4095] \
|
||||
[172.17.0.10].46798 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,17700,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:26.574350 [#81 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:26.574350 [#81 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].46798 \
|
||||
dns QUERY,NOERROR,17700,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
|
|||
|
|
@ -1,8 +1,8 @@
|
|||
[59] 2016-10-20 15:23:01.075993 [#0 dnspad.pcap-dist 4095] \
|
||||
[59] 2016-10-20 15:23:01.075993 [#0 dnspad.pcap 4095] \
|
||||
[172.17.0.10].53199 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[59] 2016-10-20 15:23:01.075993 [#0 dnspad.pcap-dist 4095] \
|
||||
[59] 2016-10-20 15:23:01.075993 [#0 dnspad.pcap 4095] \
|
||||
[172.17.0.10].53199 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
|
|
|
|||
123
src/test/edns.gold
Normal file
123
src/test/edns.gold
Normal file
|
|
@ -0,0 +1,123 @@
|
|||
[64] 2023-07-05 07:21:38.669836 [#0 edns.pcap 4095] \
|
||||
[172.17.0.6].58541 [172.17.0.1].53 \
|
||||
dns QUERY,NOERROR,31428,rd \
|
||||
1 h.root-servers.net.,IN,A 0 0 0
|
||||
[64] 2023-07-05 07:21:38.669891 [#1 edns.pcap 4095] \
|
||||
[172.17.0.6].58541 [172.17.0.1].53 \
|
||||
dns QUERY,NOERROR,5824,rd \
|
||||
1 h.root-servers.net.,IN,AAAA 0 0 0
|
||||
[80] 2023-07-05 07:21:38.669977 [#2 edns.pcap 4095] \
|
||||
[172.17.0.1].53 [172.17.0.6].58541 \
|
||||
dns QUERY,NOERROR,31428,qr|rd|ra \
|
||||
1 h.root-servers.net.,IN,A \
|
||||
1 h.root-servers.net.,IN,A,85098,198.97.190.53 0 0
|
||||
[92] 2023-07-05 07:21:38.670010 [#3 edns.pcap 4095] \
|
||||
[172.17.0.1].53 [172.17.0.6].58541 \
|
||||
dns QUERY,NOERROR,5824,qr|rd|ra \
|
||||
1 h.root-servers.net.,IN,AAAA \
|
||||
1 h.root-servers.net.,IN,AAAA,85098,2001:500:1::53 0 0
|
||||
[88] 2023-07-05 07:21:38.670793 [#4 edns.pcap 4095] \
|
||||
[172.17.0.6].33737 [198.97.190.53].53 \
|
||||
dns QUERY,NOERROR,56979,rd|ad \
|
||||
1 ns1.dns.nic.aaa.,IN,NS 0 0 \
|
||||
1 .,4096,4096,0,edns0[len=16,UDP=4096,ver=0,rcode=0,DO=0,z=0],edns0opt[code=3,codelen=0],edns0opt[code=10,codelen=8]
|
||||
[464] 2023-07-05 07:21:38.698303 [#5 edns.pcap 4095] \
|
||||
[198.97.190.53].53 [172.17.0.6].33737 \
|
||||
dns QUERY,NOERROR,56979,qr|rd \
|
||||
1 ns1.dns.nic.aaa.,IN,NS 0 \
|
||||
6 aaa.,IN,NS,172800,a.nic.aaa. \
|
||||
aaa.,IN,NS,172800,b.nic.aaa. \
|
||||
aaa.,IN,NS,172800,c.nic.aaa. \
|
||||
aaa.,IN,NS,172800,ns1.dns.nic.aaa. \
|
||||
aaa.,IN,NS,172800,ns2.dns.nic.aaa. \
|
||||
aaa.,IN,NS,172800,ns3.dns.nic.aaa. \
|
||||
13 a.nic.aaa.,IN,A,172800,37.209.192.9 \
|
||||
b.nic.aaa.,IN,A,172800,37.209.194.9 \
|
||||
c.nic.aaa.,IN,A,172800,37.209.196.9 \
|
||||
ns1.dns.nic.aaa.,IN,A,172800,156.154.144.2 \
|
||||
ns2.dns.nic.aaa.,IN,A,172800,156.154.145.2 \
|
||||
ns3.dns.nic.aaa.,IN,A,172800,156.154.159.2 \
|
||||
a.nic.aaa.,IN,AAAA,172800,2001:dcd:1::9 \
|
||||
b.nic.aaa.,IN,AAAA,172800,2001:dcd:2::9 \
|
||||
c.nic.aaa.,IN,AAAA,172800,2001:dcd:3::9 \
|
||||
ns1.dns.nic.aaa.,IN,AAAA,172800,2610:a1:1071::2 \
|
||||
ns2.dns.nic.aaa.,IN,AAAA,172800,2610:a1:1072::2 \
|
||||
ns3.dns.nic.aaa.,IN,AAAA,172800,2610:a1:1073::2 \
|
||||
.,1232,1232,0,edns0[len=30,UDP=1232,ver=0,rcode=0,DO=0,z=0],edns0opt[code=3,codelen=26]
|
||||
[64] 2023-07-05 07:21:42.739334 [#6 edns.pcap 4095] \
|
||||
[172.17.0.6].53174 [172.17.0.1].53 \
|
||||
dns QUERY,NOERROR,48648,rd \
|
||||
1 g.root-servers.net.,IN,A 0 0 0
|
||||
[64] 2023-07-05 07:21:42.739396 [#7 edns.pcap 4095] \
|
||||
[172.17.0.6].53174 [172.17.0.1].53 \
|
||||
dns QUERY,NOERROR,48141,rd \
|
||||
1 g.root-servers.net.,IN,AAAA 0 0 0
|
||||
[80] 2023-07-05 07:21:42.739525 [#8 edns.pcap 4095] \
|
||||
[172.17.0.1].53 [172.17.0.6].53174 \
|
||||
dns QUERY,NOERROR,48648,qr|rd|ra \
|
||||
1 g.root-servers.net.,IN,A \
|
||||
1 g.root-servers.net.,IN,A,85094,192.112.36.4 0 0
|
||||
[92] 2023-07-05 07:21:42.739558 [#9 edns.pcap 4095] \
|
||||
[172.17.0.1].53 [172.17.0.6].53174 \
|
||||
dns QUERY,NOERROR,48141,qr|rd|ra \
|
||||
1 g.root-servers.net.,IN,AAAA \
|
||||
1 g.root-servers.net.,IN,AAAA,85094,2001:500:12::d0d 0 0
|
||||
[83] 2023-07-05 07:21:42.740590 [#10 edns.pcap 4095] \
|
||||
[172.17.0.6].50901 [192.112.36.4].53 \
|
||||
dns QUERY,NOERROR,35713,rd|ad \
|
||||
1 net.,IN,A 0 0 \
|
||||
1 .,4096,4096,0,edns0[len=23,UDP=4096,ver=0,rcode=0,DO=0,z=0],edns0opt[ECS,family=1,source=24,scope=0,addr=172.17.0.0],edns0opt[code=10,codelen=8]
|
||||
[895] 2023-07-05 07:21:42.836816 [#11 edns.pcap 4095] \
|
||||
[192.112.36.4].53 [172.17.0.6].50901 \
|
||||
dns QUERY,NOERROR,35713,qr|rd \
|
||||
1 net.,IN,A 0 \
|
||||
13 net.,IN,NS,172800,j.gtld-servers.net. \
|
||||
net.,IN,NS,172800,b.gtld-servers.net. \
|
||||
net.,IN,NS,172800,a.gtld-servers.net. \
|
||||
net.,IN,NS,172800,h.gtld-servers.net. \
|
||||
net.,IN,NS,172800,d.gtld-servers.net. \
|
||||
net.,IN,NS,172800,c.gtld-servers.net. \
|
||||
net.,IN,NS,172800,i.gtld-servers.net. \
|
||||
net.,IN,NS,172800,e.gtld-servers.net. \
|
||||
net.,IN,NS,172800,m.gtld-servers.net. \
|
||||
net.,IN,NS,172800,f.gtld-servers.net. \
|
||||
net.,IN,NS,172800,k.gtld-servers.net. \
|
||||
net.,IN,NS,172800,l.gtld-servers.net. \
|
||||
net.,IN,NS,172800,g.gtld-servers.net. \
|
||||
27 m.gtld-servers.net.,IN,A,172800,192.55.83.30 \
|
||||
l.gtld-servers.net.,IN,A,172800,192.41.162.30 \
|
||||
k.gtld-servers.net.,IN,A,172800,192.52.178.30 \
|
||||
j.gtld-servers.net.,IN,A,172800,192.48.79.30 \
|
||||
i.gtld-servers.net.,IN,A,172800,192.43.172.30 \
|
||||
h.gtld-servers.net.,IN,A,172800,192.54.112.30 \
|
||||
g.gtld-servers.net.,IN,A,172800,192.42.93.30 \
|
||||
f.gtld-servers.net.,IN,A,172800,192.35.51.30 \
|
||||
e.gtld-servers.net.,IN,A,172800,192.12.94.30 \
|
||||
d.gtld-servers.net.,IN,A,172800,192.31.80.30 \
|
||||
c.gtld-servers.net.,IN,A,172800,192.26.92.30 \
|
||||
b.gtld-servers.net.,IN,A,172800,192.33.14.30 \
|
||||
a.gtld-servers.net.,IN,A,172800,192.5.6.30 \
|
||||
m.gtld-servers.net.,IN,AAAA,172800,2001:501:b1f9::30 \
|
||||
l.gtld-servers.net.,IN,AAAA,172800,2001:500:d937::30 \
|
||||
k.gtld-servers.net.,IN,AAAA,172800,2001:503:d2d::30 \
|
||||
j.gtld-servers.net.,IN,AAAA,172800,2001:502:7094::30 \
|
||||
i.gtld-servers.net.,IN,AAAA,172800,2001:503:39c1::30 \
|
||||
h.gtld-servers.net.,IN,AAAA,172800,2001:502:8cc::30 \
|
||||
g.gtld-servers.net.,IN,AAAA,172800,2001:503:eea3::30 \
|
||||
f.gtld-servers.net.,IN,AAAA,172800,2001:503:d414::30 \
|
||||
e.gtld-servers.net.,IN,AAAA,172800,2001:502:1ca1::30 \
|
||||
d.gtld-servers.net.,IN,AAAA,172800,2001:500:856e::30 \
|
||||
c.gtld-servers.net.,IN,AAAA,172800,2001:503:83eb::30 \
|
||||
b.gtld-servers.net.,IN,AAAA,172800,2001:503:231d::2:30 \
|
||||
a.gtld-servers.net.,IN,AAAA,172800,2001:503:a83e::2:30 \
|
||||
.,1232,1232,0,edns0[len=39,UDP=1232,ver=0,rcode=0,DO=0,z=0],edns0opt[code=10,codelen=24],edns0opt[ECS,family=1,source=24,scope=0,addr=172.17.0.0]
|
||||
[86] 2023-07-05 07:21:46.511502 [#12 edns.pcap 4095] \
|
||||
[172.17.0.6].35191 [1.1.1.1].53 \
|
||||
dns QUERY,NOERROR,960,rd|ad \
|
||||
1 dnssec-failed.org.,IN,A 0 0 \
|
||||
1 .,4096,4096,0,edns0[len=12,UDP=4096,ver=0,rcode=0,DO=0,z=0],edns0opt[code=10,codelen=8]
|
||||
[131] 2023-07-05 07:21:46.518500 [#13 edns.pcap 4095] \
|
||||
[1.1.1.1].53 [172.17.0.6].35191 \
|
||||
dns QUERY,SERVFAIL,960,qr|rd|ra \
|
||||
1 dnssec-failed.org.,IN,A 0 0 \
|
||||
1 .,1232,1232,0,edns0[len=57,UDP=1232,ver=0,rcode=0,DO=0,z=0],edns0opt[code=15,codelen=53]
|
||||
BIN
src/test/edns.pcap
Normal file
BIN
src/test/edns.pcap
Normal file
Binary file not shown.
|
|
@ -1,6 +1,8 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
../dnscap -g -r dns.pcap-dist 2>dns.out
|
||||
test -e dns.pcap || ln -s "$srcdir/dns.pcap" dns.pcap
|
||||
|
||||
../dnscap -g -r dns.pcap 2>dns.out
|
||||
|
||||
mv dns.out dns.out.old
|
||||
grep -v "^libgcov profiling error:" dns.out.old > dns.out
|
||||
|
|
|
|||
|
|
@ -1,20 +1,20 @@
|
|||
[87] 2018-11-27 15:52:00.414188 [#0 dns6.pcap-dist 4095] \
|
||||
[87] 2018-11-27 15:52:00.414188 [#0 dns6.pcap 4095] \
|
||||
[2a01:3f0:0:57::245].51972 [2001:4860:4860::8888].53 \
|
||||
dns QUERY,NOERROR,51420,rd|ad \
|
||||
1 google.com.,IN,A 0 0 \
|
||||
1 .,4096,4096,0,edns0[len=0,UDP=4096,ver=0,rcode=0,DO=0,z=0]
|
||||
[103] 2018-11-27 15:52:00.428453 [#1 dns6.pcap-dist 4095] \
|
||||
[103] 2018-11-27 15:52:00.428453 [#1 dns6.pcap 4095] \
|
||||
[2001:4860:4860::8888].53 [2a01:3f0:0:57::245].51972 \
|
||||
dns QUERY,NOERROR,51420,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,299,172.217.20.46 0 \
|
||||
1 .,512,512,0,edns0[len=0,UDP=512,ver=0,rcode=0,DO=0,z=0]
|
||||
[87] 2018-11-27 15:52:00.414188 [#0 dns6.pcap-dist 4095] \
|
||||
[87] 2018-11-27 15:52:00.414188 [#0 dns6.pcap 4095] \
|
||||
[2a01:3f0:0:57::245].51972 [2001:4860:4860::8888].53 \
|
||||
dns QUERY,NOERROR,51420,rd|ad \
|
||||
1 google.com.,IN,A 0 0 \
|
||||
1 .,4096,4096,0,edns0[len=0,UDP=4096,ver=0,rcode=0,DO=0,z=0]
|
||||
[103] 2018-11-27 15:52:00.428453 [#1 dns6.pcap-dist 4095] \
|
||||
[103] 2018-11-27 15:52:00.428453 [#1 dns6.pcap 4095] \
|
||||
[2001:4860:4860::8888].53 [2a01:3f0:0:57::245].51972 \
|
||||
dns QUERY,NOERROR,51420,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
|
|||
|
|
@ -1,6 +1,8 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
../dnscap -r dns6.pcap-dist -g 2>test10.out
|
||||
../dnscap -r dns6.pcap-dist -o use_layers=yes -g 2>>test10.out
|
||||
test -e dns6.pcap || ln -s "$srcdir/dns6.pcap" dns6.pcap
|
||||
|
||||
../dnscap -r dns6.pcap -g 2>test10.out
|
||||
../dnscap -r dns6.pcap -o use_layers=yes -g 2>>test10.out
|
||||
|
||||
diff test10.out "$srcdir/test10.gold"
|
||||
|
|
|
|||
|
|
@ -1,5 +1,7 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
test -e dns.pcap || ln -s "$srcdir/dns.pcap" dns.pcap
|
||||
|
||||
../dnscap -?
|
||||
! ../dnscap -j
|
||||
|
||||
|
|
@ -42,13 +44,13 @@ fi
|
|||
|
||||
../dnscap -V
|
||||
|
||||
../dnscap -r dns.pcap-dist -g -ddddd
|
||||
../dnscap -r dns.pcap-dist -x '.*' -X '.*' -g -ddddd
|
||||
../dnscap -r dns.pcap -g -ddddd
|
||||
../dnscap -r dns.pcap -x '.*' -X '.*' -g -ddddd
|
||||
|
||||
! ../dnscap -r dns.pcap-dist -i fake 2>test11.out
|
||||
! ../dnscap -r dns.pcap -i fake 2>test11.out
|
||||
cat test11.out
|
||||
grep -qF -- "-i makes no sense after -r" test11.out
|
||||
! ../dnscap -i fake -r dns.pcap-dist 2>test11.out
|
||||
! ../dnscap -i fake -r dns.pcap 2>test11.out
|
||||
cat test11.out
|
||||
grep -qF -- "-r makes no sense after -i" test11.out
|
||||
|
||||
|
|
|
|||
|
|
@ -1,6 +1,8 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
if ! ../dnscap -g -r dns.pcap-dist -w test12 -W .gz 2>test12.out; then
|
||||
test -e dns.pcap || ln -s "$srcdir/dns.pcap" dns.pcap
|
||||
|
||||
if ! ../dnscap -g -r dns.pcap -w test12 -W .gz 2>test12.out; then
|
||||
grep -qF "gzip compression requested but not supported" test12.out && exit 0
|
||||
exit 1
|
||||
fi
|
||||
|
|
|
|||
|
|
@ -2,6 +2,8 @@
|
|||
|
||||
test -f /etc/resolv.conf || exit 0
|
||||
|
||||
test -e dns.pcap || ln -s "$srcdir/dns.pcap" dns.pcap
|
||||
|
||||
! ../dnscap -a "fake_host-should+not/work" 2>test13.out
|
||||
cat test13.out
|
||||
grep -qF "invalid host address" test13.out
|
||||
|
|
@ -9,20 +11,20 @@ grep -qF "invalid host address" test13.out
|
|||
if [ "`uname`" = "OpenBSD" ]; then
|
||||
# IPv6 addresses in BPF seems to segfault on OpenBSD and doing host and
|
||||
# not host throws generic pcap_compile error
|
||||
../dnscap -a 127.0.0.1 -r dns.pcap-dist -g -dddd
|
||||
../dnscap -z 127.0.0.1 -r dns.pcap-dist -g -dddd
|
||||
../dnscap -A 127.0.0.1 -r dns.pcap-dist -g -dddd
|
||||
../dnscap -Z 127.0.0.1 -r dns.pcap-dist -g -dddd
|
||||
../dnscap -Y 127.0.0.1 -r dns.pcap-dist -g -dddd
|
||||
../dnscap -a 127.0.0.1 -r dns.pcap -g -dddd
|
||||
../dnscap -z 127.0.0.1 -r dns.pcap -g -dddd
|
||||
../dnscap -A 127.0.0.1 -r dns.pcap -g -dddd
|
||||
../dnscap -Z 127.0.0.1 -r dns.pcap -g -dddd
|
||||
../dnscap -Y 127.0.0.1 -r dns.pcap -g -dddd
|
||||
else
|
||||
../dnscap -a 127.0.0.1 -a ::1 -r dns.pcap-dist -g -dddd
|
||||
../dnscap -z 127.0.0.1 -z ::1 -r dns.pcap-dist -g -dddd
|
||||
../dnscap -A 127.0.0.1 -A ::1 -r dns.pcap-dist -g -dddd
|
||||
../dnscap -Z 127.0.0.1 -Z ::1 -r dns.pcap-dist -g -dddd
|
||||
../dnscap -Y 127.0.0.1 -Y ::1 -r dns.pcap-dist -g -dddd
|
||||
../dnscap -a 127.0.0.1 -a ::1 -r dns.pcap -g -dddd
|
||||
../dnscap -z 127.0.0.1 -z ::1 -r dns.pcap -g -dddd
|
||||
../dnscap -A 127.0.0.1 -A ::1 -r dns.pcap -g -dddd
|
||||
../dnscap -Z 127.0.0.1 -Z ::1 -r dns.pcap -g -dddd
|
||||
../dnscap -Y 127.0.0.1 -Y ::1 -r dns.pcap -g -dddd
|
||||
fi
|
||||
if [ "$TEST_DNSCAP_WITH_NETWORK" = "1" ]; then
|
||||
../dnscap -a google.com -r dns.pcap-dist -g -dddd
|
||||
../dnscap -a google.com -r dns.pcap -g -dddd
|
||||
fi
|
||||
../dnscap -Y 127.0.0.1 -r dns.pcap-dist -g
|
||||
../dnscap -Y 8.8.8.8 -r dns.pcap-dist -g
|
||||
../dnscap -Y 127.0.0.1 -r dns.pcap -g
|
||||
../dnscap -Y 8.8.8.8 -r dns.pcap -g
|
||||
|
|
|
|||
File diff suppressed because it is too large
Load diff
|
|
@ -1,22 +1,24 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
test -e dns.pcap || ln -s "$srcdir/dns.pcap" dns.pcap
|
||||
|
||||
echo "-- only 1" >test14.out
|
||||
../dnscap -g -q 1 -r dns.pcap-dist 2>>test14.out
|
||||
../dnscap -g -q 1 -r dns.pcap 2>>test14.out
|
||||
echo "-- not 1" >>test14.out
|
||||
../dnscap -g -Q 1 -r dns.pcap-dist 2>>test14.out
|
||||
../dnscap -g -Q 1 -r dns.pcap 2>>test14.out
|
||||
echo "-- only PTR" >>test14.out
|
||||
../dnscap -g -q PTR -r dns.pcap-dist 2>>test14.out
|
||||
../dnscap -g -q PTR -r dns.pcap 2>>test14.out
|
||||
echo "-- not PTR" >>test14.out
|
||||
../dnscap -g -Q PTR -r dns.pcap-dist 2>>test14.out
|
||||
../dnscap -g -Q PTR -r dns.pcap 2>>test14.out
|
||||
|
||||
echo "-- only 1" >>test14.out
|
||||
../dnscap -g -o use_layers=yes -q 1 -r dns.pcap-dist 2>>test14.out
|
||||
../dnscap -g -o use_layers=yes -q 1 -r dns.pcap 2>>test14.out
|
||||
echo "-- not 1" >>test14.out
|
||||
../dnscap -g -o use_layers=yes -Q 1 -r dns.pcap-dist 2>>test14.out
|
||||
../dnscap -g -o use_layers=yes -Q 1 -r dns.pcap 2>>test14.out
|
||||
echo "-- only PTR" >>test14.out
|
||||
../dnscap -g -o use_layers=yes -q PTR -r dns.pcap-dist 2>>test14.out
|
||||
../dnscap -g -o use_layers=yes -q PTR -r dns.pcap 2>>test14.out
|
||||
echo "-- not PTR" >>test14.out
|
||||
../dnscap -g -o use_layers=yes -Q PTR -r dns.pcap-dist 2>>test14.out
|
||||
../dnscap -g -o use_layers=yes -Q PTR -r dns.pcap 2>>test14.out
|
||||
|
||||
mv test14.out test14.out.old
|
||||
grep -v "^libgcov profiling error:" test14.out.old > test14.out
|
||||
|
|
|
|||
|
|
@ -1,6 +1,8 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
../dnscap -g -r dns.pcap-dist 2>no-layers.out
|
||||
../dnscap -g -r dns.pcap-dist -o use_layers=yes 2>layers.out
|
||||
test -e dns.pcap || ln -s "$srcdir/dns.pcap" dns.pcap
|
||||
|
||||
../dnscap -g -r dns.pcap 2>no-layers.out
|
||||
../dnscap -g -r dns.pcap -o use_layers=yes 2>layers.out
|
||||
|
||||
diff no-layers.out layers.out
|
||||
|
|
|
|||
|
|
@ -1,6 +1,8 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
../dnscap -g -f -r frags.pcap-dist -o use_layers=yes -o defrag_ipv4=yes -o max_ipv4_fragments_per_packet=64 2>frags.out
|
||||
test -e frags.pcap || ln -s "$srcdir/frags.pcap" frags.pcap
|
||||
|
||||
../dnscap -g -f -r frags.pcap -o use_layers=yes -o defrag_ipv4=yes -o max_ipv4_fragments_per_packet=64 2>frags.out
|
||||
|
||||
# remove timestamp
|
||||
sed -i -e 's%^\(\[[0-9]*\]\)[^\[]*\[%\1 [%g' frags.out
|
||||
|
|
@ -8,6 +10,6 @@ sed -i -e 's%^\(\[[0-9]*\]\)[^\[]*\[%\1 [%g' frags.out
|
|||
# create gold file
|
||||
cp "$srcdir/dns.gold" frags.gold
|
||||
sed -i -e 's%^\(\[[0-9]*\]\)[^\[]*\[%\1 [%g' frags.gold
|
||||
sed -i -e 's%dns.pcap-dist%frags.pcap-dist%g' frags.gold
|
||||
sed -i -e 's%dns.pcap%frags.pcap%g' frags.gold
|
||||
|
||||
diff frags.out frags.gold
|
||||
|
|
|
|||
|
|
@ -1,6 +1,8 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
../dnscap -g -T -r 1qtcppadd.pcap-dist 2>padding-no-layers.out
|
||||
../dnscap -g -T -r 1qtcppadd.pcap-dist -o use_layers=yes 2>padding-layers.out
|
||||
test -e 1qtcppadd.pcap || ln -s "$srcdir/1qtcppadd.pcap" 1qtcppadd.pcap
|
||||
|
||||
../dnscap -g -T -r 1qtcppadd.pcap 2>padding-no-layers.out
|
||||
../dnscap -g -T -r 1qtcppadd.pcap -o use_layers=yes 2>padding-layers.out
|
||||
|
||||
diff padding-no-layers.out padding-layers.out
|
||||
|
|
|
|||
|
|
@ -1,20 +1,22 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
test -e vlan11.pcap || ln -s "$srcdir/vlan11.pcap" vlan11.pcap
|
||||
|
||||
osrel=`uname -s`
|
||||
|
||||
../dnscap -g -r vlan11.pcap-dist 2>vlan11.out
|
||||
../dnscap -g -r vlan11.pcap 2>vlan11.out
|
||||
test -f vlan11.out && ! test -s vlan11.out
|
||||
../dnscap -g -r vlan11.pcap-dist -L 10 2>vlan11.out
|
||||
../dnscap -g -r vlan11.pcap -L 10 2>vlan11.out
|
||||
test -f vlan11.out && ! test -s vlan11.out
|
||||
../dnscap -g -r vlan11.pcap-dist -L 4095 2>vlan11.out
|
||||
../dnscap -g -r vlan11.pcap -L 4095 2>vlan11.out
|
||||
diff vlan11.out "$srcdir/vlan11.gold"
|
||||
../dnscap -g -r vlan11.pcap-dist -L 11 2>vlan11.out
|
||||
../dnscap -g -r vlan11.pcap -L 11 2>vlan11.out
|
||||
diff vlan11.out "$srcdir/vlan11.gold"
|
||||
../dnscap -g -r vlan11.pcap-dist -o use_layers=yes 2>vlan11.out
|
||||
../dnscap -g -r vlan11.pcap -o use_layers=yes 2>vlan11.out
|
||||
test -f vlan11.out && ! test -s vlan11.out
|
||||
../dnscap -g -r vlan11.pcap-dist -o use_layers=yes -L 10 2>vlan11.out
|
||||
../dnscap -g -r vlan11.pcap -o use_layers=yes -L 10 2>vlan11.out
|
||||
test -f vlan11.out && ! test -s vlan11.out
|
||||
../dnscap -g -r vlan11.pcap-dist -o use_layers=yes -L 4095 2>vlan11.out
|
||||
../dnscap -g -r vlan11.pcap -o use_layers=yes -L 4095 2>vlan11.out
|
||||
diff vlan11.out "$srcdir/vlan11.gold"
|
||||
../dnscap -g -r vlan11.pcap-dist -o use_layers=yes -L 11 2>vlan11.out
|
||||
../dnscap -g -r vlan11.pcap -o use_layers=yes -L 11 2>vlan11.out
|
||||
diff vlan11.out "$srcdir/vlan11.gold"
|
||||
|
|
|
|||
|
|
@ -1,6 +1,8 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
../dnscap -g -r dnspad.pcap-dist 2>dnspad.out
|
||||
../dnscap -o use_layers=yes -g -r dnspad.pcap-dist 2>>dnspad.out
|
||||
test -e dnspad.pcap || ln -s "$srcdir/dnspad.pcap" dnspad.pcap
|
||||
|
||||
../dnscap -g -r dnspad.pcap 2>dnspad.out
|
||||
../dnscap -o use_layers=yes -g -r dnspad.pcap 2>>dnspad.out
|
||||
|
||||
diff dnspad.out "$srcdir/dnspad.gold"
|
||||
|
|
|
|||
File diff suppressed because it is too large
Load diff
|
|
@ -4,7 +4,9 @@ txtout="../../plugins/txtout/.libs/txtout.so"
|
|||
|
||||
rm -f test7.out test7.layer.out
|
||||
|
||||
for what in dnso1tcp.pcap-dist 1qtcpnosyn.pcap-dist do1t-nosyn-1nolen.pcap-dist dnso1tcp-midmiss.pcap-dist; do
|
||||
for what in dnso1tcp.pcap 1qtcpnosyn.pcap do1t-nosyn-1nolen.pcap dnso1tcp-midmiss.pcap; do
|
||||
test -e "$what" || ln -s "$srcdir/$what" "$what"
|
||||
|
||||
../dnscap -r "$what" -g -T 2>>test7.out
|
||||
../dnscap -r "$what" -g -T -o use_layers=yes 2>>test7.layer.out
|
||||
if [ -f "$txtout" ]; then
|
||||
|
|
@ -20,7 +22,9 @@ echo "" >>test7.layer.out
|
|||
echo "Enabling parse_ongoing_tcp and allow_reset_tcpstate" >>test7.layer.out
|
||||
echo "" >>test7.layer.out
|
||||
|
||||
for what in dnso1tcp.pcap-dist 1qtcpnosyn.pcap-dist do1t-nosyn-1nolen.pcap-dist dnso1tcp-midmiss.pcap-dist; do
|
||||
for what in dnso1tcp.pcap 1qtcpnosyn.pcap do1t-nosyn-1nolen.pcap dnso1tcp-midmiss.pcap; do
|
||||
test -e "$what" || ln -s "$srcdir/$what" "$what"
|
||||
|
||||
../dnscap -r "$what" -g -T -o parse_ongoing_tcp=yes -o allow_reset_tcpstate=yes 2>>test7.out
|
||||
../dnscap -r "$what" -g -T -o parse_ongoing_tcp=yes -o allow_reset_tcpstate=yes -o use_layers=yes 2>>test7.layer.out
|
||||
if [ -f "$txtout" ]; then
|
||||
|
|
|
|||
|
|
@ -1,69 +1,69 @@
|
|||
[60] 2017-12-11 13:59:04.949707 [#0 dnsotcp-many1pkt.pcap-dist 4095] \
|
||||
[60] 2017-12-11 13:59:04.949707 [#0 dnsotcp-many1pkt.pcap 4095] \
|
||||
[172.17.0.9].48613 [8.8.8.8].53
|
||||
[60] 2017-12-11 13:59:04.953026 [#1 dnsotcp-many1pkt.pcap-dist 4095] \
|
||||
[60] 2017-12-11 13:59:04.953026 [#1 dnsotcp-many1pkt.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.9].48613
|
||||
[142] 2017-12-11 13:59:04.953122 [#2 dnsotcp-many1pkt.pcap-dist 4095] \
|
||||
[142] 2017-12-11 13:59:04.953122 [#2 dnsotcp-many1pkt.pcap 4095] \
|
||||
[172.17.0.9].48613 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[142] 2017-12-11 13:59:04.953122 [#2 dnsotcp-many1pkt.pcap-dist 4095] \
|
||||
[142] 2017-12-11 13:59:04.953122 [#2 dnsotcp-many1pkt.pcap 4095] \
|
||||
[172.17.0.9].48613 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[142] 2017-12-11 13:59:04.953122 [#2 dnsotcp-many1pkt.pcap-dist 4095] \
|
||||
[142] 2017-12-11 13:59:04.953122 [#2 dnsotcp-many1pkt.pcap 4095] \
|
||||
[172.17.0.9].48613 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[109] 2017-12-11 13:59:04.956698 [#5 dnsotcp-many1pkt.pcap-dist 4095] \
|
||||
[109] 2017-12-11 13:59:04.956698 [#5 dnsotcp-many1pkt.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.9].48613 \
|
||||
dns QUERY,NOERROR,4815,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,47,172.217.22.174 0 \
|
||||
1 .,512,512,0,edns0[len=0,UDP=512,ver=0,rcode=0,DO=0,z=0]
|
||||
[52] 2017-12-11 13:59:04.957247 [#6 dnsotcp-many1pkt.pcap-dist 4095] \
|
||||
[52] 2017-12-11 13:59:04.957247 [#6 dnsotcp-many1pkt.pcap 4095] \
|
||||
[172.17.0.9].48613 [8.8.8.8].53
|
||||
[52] 2017-12-11 13:59:04.960230 [#7 dnsotcp-many1pkt.pcap-dist 4095] \
|
||||
[52] 2017-12-11 13:59:04.960230 [#7 dnsotcp-many1pkt.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.9].48613
|
||||
[60] 2018-01-10 11:22:41.543825 [#0 dnsotcp-manyopkts.pcap-dist 4095] \
|
||||
[60] 2018-01-10 11:22:41.543825 [#0 dnsotcp-manyopkts.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[60] 2018-01-10 11:22:41.548834 [#1 dnsotcp-manyopkts.pcap-dist 4095] \
|
||||
[60] 2018-01-10 11:22:41.548834 [#1 dnsotcp-manyopkts.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388
|
||||
[97] 2018-01-10 11:22:41.548947 [#2 dnsotcp-manyopkts.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:41.548947 [#2 dnsotcp-manyopkts.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[97] 2018-01-10 11:22:41.552406 [#3 dnsotcp-manyopkts.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:41.552406 [#3 dnsotcp-manyopkts.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:41.552406 [#3 dnsotcp-manyopkts.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:41.552406 [#3 dnsotcp-manyopkts.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[97] 2018-01-10 11:22:41.552406 [#3 dnsotcp-manyopkts.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:41.552406 [#3 dnsotcp-manyopkts.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[60] 2018-01-10 11:22:41.543825 [#0 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[60] 2018-01-10 11:22:41.543825 [#0 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[60] 2018-01-10 11:22:41.548834 [#1 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[60] 2018-01-10 11:22:41.548834 [#1 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388
|
||||
[80] 2018-01-10 11:22:41.552406 [#2 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:41.552406 [#2 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:41.552406 [#2 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:41.552406 [#2 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:41.555912 [#4 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:41.555912 [#4 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,59311,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,58,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:41.600183 [#5 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:41.600183 [#5 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:41.600183 [#5 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:41.600183 [#5 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,35665,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:41.616460 [#7 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:41.616460 [#7 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,35665,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -71,43 +71,43 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21599,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21599,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21599,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:41.659921 [#8 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:41.659921 [#8 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:41.659921 [#8 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:41.659921 [#8 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,5337,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[97] 2018-01-10 11:22:42.047148 [#10 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.047148 [#10 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:42.047148 [#10 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.047148 [#10 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25433,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[80] 2018-01-10 11:22:42.097899 [#12 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.097899 [#12 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.097899 [#12 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.097899 [#12 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,63798,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[97] 2018-01-10 11:22:42.145005 [#14 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.145005 [#14 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:42.145005 [#14 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.145005 [#14 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,8470,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[80] 2018-01-10 11:22:42.192777 [#16 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.192777 [#16 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.192777 [#16 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.192777 [#16 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,60258,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[97] 2018-01-10 11:22:42.240395 [#18 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.240395 [#18 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:42.240395 [#18 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.240395 [#18 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,44985,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:42.245103 [#20 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:42.245103 [#20 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,44985,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -115,24 +115,24 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:42.290257 [#21 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.290257 [#21 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.290257 [#21 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.290257 [#21 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45512,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:42.293978 [#23 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:42.293978 [#23 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,45512,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,57,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:42.337985 [#24 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.337985 [#24 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:42.337985 [#24 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.337985 [#24 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22980,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:42.341559 [#26 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:42.341559 [#26 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,22980,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -140,24 +140,24 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:42.385009 [#27 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.385009 [#27 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.385009 [#27 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.385009 [#27 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,1834,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:42.389082 [#29 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:42.389082 [#29 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,1834,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,57,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:42.433458 [#30 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.433458 [#30 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:42.433458 [#30 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.433458 [#30 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25431,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:42.438748 [#32 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:42.438748 [#32 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,25431,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -165,24 +165,24 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:42.484005 [#33 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.484005 [#33 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.484005 [#33 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.484005 [#33 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,48432,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:42.487697 [#35 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:42.487697 [#35 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,48432,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,57,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:42.532414 [#36 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.532414 [#36 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:42.532414 [#36 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.532414 [#36 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,47411,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:42.537574 [#38 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:42.537574 [#38 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,47411,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -190,57 +190,57 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:42.583021 [#39 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.583021 [#39 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.583021 [#39 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.583021 [#39 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,12038,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:42.586898 [#41 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:42.586898 [#41 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,12038,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,57,216.58.211.142 0 0
|
||||
[80] 2018-01-10 11:22:42.630221 [#42 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.630221 [#42 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.630221 [#42 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.630221 [#42 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,11614,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:42.633808 [#44 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:42.633808 [#44 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,11614,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,57,216.58.211.142 0 0
|
||||
[80] 2018-01-10 11:22:42.679168 [#45 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.679168 [#45 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.679168 [#45 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.679168 [#45 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59173,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:42.682888 [#47 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:42.682888 [#47 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,59173,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,57,216.58.211.142 0 0
|
||||
[80] 2018-01-10 11:22:42.727254 [#48 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.727254 [#48 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.727254 [#48 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.727254 [#48 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45535,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:42.732703 [#50 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:42.732703 [#50 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,45535,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,57,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:42.777184 [#51 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.777184 [#51 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:42.777184 [#51 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.777184 [#51 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,60808,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:42.781053 [#53 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:42.781053 [#53 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,60808,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -248,24 +248,24 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:42.824222 [#54 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.824222 [#54 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.824222 [#54 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.824222 [#54 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,64325,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:42.828050 [#56 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:42.828050 [#56 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,64325,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,57,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:42.872186 [#57 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.872186 [#57 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:42.872186 [#57 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.872186 [#57 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25543,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:42.875911 [#59 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:42.875911 [#59 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,25543,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -273,24 +273,24 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21598,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:42.920231 [#60 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.920231 [#60 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:42.920231 [#60 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:42.920231 [#60 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,20736,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:42.923917 [#62 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:42.923917 [#62 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,20736,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,57,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:42.968961 [#63 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.968961 [#63 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:42.968961 [#63 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:42.968961 [#63 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25911,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:42.972662 [#65 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:42.972662 [#65 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,25911,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -298,24 +298,24 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:43.017364 [#66 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.017364 [#66 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:43.017364 [#66 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.017364 [#66 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,64358,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:43.022591 [#68 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:43.022591 [#68 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,64358,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,56,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:43.066765 [#69 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:43.066765 [#69 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:43.066765 [#69 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:43.066765 [#69 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,37698,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:43.070349 [#71 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:43.070349 [#71 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,37698,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -323,24 +323,24 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:43.114332 [#72 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.114332 [#72 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:43.114332 [#72 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.114332 [#72 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,54706,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:43.119538 [#74 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:43.119538 [#74 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,54706,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,56,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:43.163857 [#75 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:43.163857 [#75 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:43.163857 [#75 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:43.163857 [#75 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,32142,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:43.167576 [#77 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:43.167576 [#77 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,32142,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -348,24 +348,24 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:43.211417 [#78 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.211417 [#78 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:43.211417 [#78 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.211417 [#78 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,41808,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:43.216686 [#80 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:43.216686 [#80 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,41808,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,56,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:43.260995 [#81 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:43.260995 [#81 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:43.260995 [#81 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:43.260995 [#81 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,18886,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:43.265047 [#83 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:43.265047 [#83 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,18886,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -373,24 +373,24 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:43.310017 [#84 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.310017 [#84 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:43.310017 [#84 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.310017 [#84 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,10624,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:43.313596 [#86 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:43.313596 [#86 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,10624,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,56,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:43.356802 [#87 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:43.356802 [#87 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:43.356802 [#87 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:43.356802 [#87 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,33139,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:43.360685 [#89 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:43.360685 [#89 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,33139,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -398,24 +398,24 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:43.406308 [#90 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.406308 [#90 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:43.406308 [#90 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.406308 [#90 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,61415,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:43.410191 [#92 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:43.410191 [#92 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,61415,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,56,216.58.211.142 0 0
|
||||
[97] 2018-01-10 11:22:43.454193 [#93 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:43.454193 [#93 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[97] 2018-01-10 11:22:43.454193 [#93 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[97] 2018-01-10 11:22:43.454193 [#93 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59258,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[197] 2018-01-10 11:22:43.458191 [#95 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[197] 2018-01-10 11:22:43.458191 [#95 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,59258,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -423,18 +423,18 @@
|
|||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f206.1e100.net. \
|
||||
206.218.58.216.in-addr.arpa.,IN,PTR,21597,dfw06s47-in-f14.1e100.net. 0 0
|
||||
[80] 2018-01-10 11:22:43.503242 [#96 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.503242 [#96 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[80] 2018-01-10 11:22:43.503242 [#96 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[80] 2018-01-10 11:22:43.503242 [#96 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,17700,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[98] 2018-01-10 11:22:43.506884 [#98 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[98] 2018-01-10 11:22:43.506884 [#98 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388 \
|
||||
dns QUERY,NOERROR,17700,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
1 google.com.,IN,A,56,216.58.211.142 0 0
|
||||
[52] 2018-01-10 11:22:43.507821 [#99 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[52] 2018-01-10 11:22:43.507821 [#99 dnso1tcp-bighole.pcap 4095] \
|
||||
[172.17.0.8].51388 [8.8.8.8].53
|
||||
[52] 2018-01-10 11:22:43.511351 [#100 dnso1tcp-bighole.pcap-dist 4095] \
|
||||
[52] 2018-01-10 11:22:43.511351 [#100 dnso1tcp-bighole.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.8].51388
|
||||
|
|
|
|||
|
|
@ -2,12 +2,16 @@
|
|||
|
||||
rm -f test8.out test8.layer.out
|
||||
|
||||
for what in dnsotcp-many1pkt.pcap-dist dnsotcp-manyopkts.pcap-dist; do
|
||||
for what in dnsotcp-many1pkt.pcap dnsotcp-manyopkts.pcap; do
|
||||
test -e "$what" || ln -s "$srcdir/$what" "$what"
|
||||
|
||||
../dnscap -r "$what" -g -T -o reassemble_tcp=yes 2>>test8.out
|
||||
../dnscap -r "$what" -g -T -o reassemble_tcp=yes -o use_layers=yes 2>>test8.layer.out
|
||||
done
|
||||
|
||||
for what in dnso1tcp-bighole.pcap-dist; do
|
||||
for what in dnso1tcp-bighole.pcap; do
|
||||
test -e "$what" || ln -s "$srcdir/$what" "$what"
|
||||
|
||||
../dnscap -r "$what" -g -T -o reassemble_tcp=yes -o allow_reset_tcpstate=yes 2>>test8.out
|
||||
../dnscap -r "$what" -g -T -o reassemble_tcp=yes -o allow_reset_tcpstate=yes -o use_layers=yes 2>>test8.layer.out
|
||||
done
|
||||
|
|
|
|||
|
|
@ -1,8 +1,8 @@
|
|||
[56] 2016-10-20 15:23:52.860937 [#0 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:52.860937 [#0 dns.pcap 4095] \
|
||||
[172.17.0.10].40953 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22531,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:52.863771 [#1 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:52.863771 [#1 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].40953 \
|
||||
dns QUERY,NOERROR,22531,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -15,11 +15,11 @@
|
|||
ns1.google.com.,IN,A,331830,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157828,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157828,216.239.38.10
|
||||
[56] 2016-10-20 15:23:59.083869 [#2 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:59.083869 [#2 dns.pcap 4095] \
|
||||
[172.17.0.10].45174 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,58510,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:59.086104 [#3 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:59.086104 [#3 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].45174 \
|
||||
dns QUERY,NOERROR,58510,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -32,11 +32,11 @@
|
|||
ns1.google.com.,IN,A,331824,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157822,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157822,216.239.38.10
|
||||
[73] 2016-10-20 15:23:59.090911 [#4 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:23:59.090911 [#4 dns.pcap 4095] \
|
||||
[172.17.0.10].33916 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45248,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:23:59.092204 [#5 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:23:59.092204 [#5 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].33916 \
|
||||
dns QUERY,NOERROR,45248,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -50,11 +50,11 @@
|
|||
ns3.google.com.,IN,A,157822,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157822,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157822,216.239.34.10
|
||||
[56] 2016-10-20 15:23:52.860937 [#0 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:52.860937 [#0 dns.pcap 4095] \
|
||||
[172.17.0.10].40953 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22531,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:52.863771 [#1 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:52.863771 [#1 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].40953 \
|
||||
dns QUERY,NOERROR,22531,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -67,11 +67,11 @@
|
|||
ns1.google.com.,IN,A,331830,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157828,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157828,216.239.38.10
|
||||
[56] 2016-10-20 15:23:59.083869 [#2 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:59.083869 [#2 dns.pcap 4095] \
|
||||
[172.17.0.10].45174 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,58510,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:59.086104 [#3 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:59.086104 [#3 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].45174 \
|
||||
dns QUERY,NOERROR,58510,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -84,11 +84,11 @@
|
|||
ns1.google.com.,IN,A,331824,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157822,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157822,216.239.38.10
|
||||
[73] 2016-10-20 15:23:59.090911 [#4 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:23:59.090911 [#4 dns.pcap 4095] \
|
||||
[172.17.0.10].33916 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45248,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:23:59.092204 [#5 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:23:59.092204 [#5 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].33916 \
|
||||
dns QUERY,NOERROR,45248,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
|
|||
|
|
@ -1,6 +1,8 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
../dnscap -r dns.pcap-dist -g -B '2016-10-20 15:23:30' -E '2016-10-20 15:24:00' 2>test9.out
|
||||
../dnscap -r dns.pcap-dist -o use_layers=yes -g -B '2016-10-20 15:23:30' -E '2016-10-20 15:24:00' 2>>test9.out
|
||||
test -e dns.pcap || ln -s "$srcdir/dns.pcap" dns.pcap
|
||||
|
||||
../dnscap -r dns.pcap -g -B '2016-10-20 15:23:30' -E '2016-10-20 15:24:00' 2>test9.out
|
||||
../dnscap -r dns.pcap -o use_layers=yes -g -B '2016-10-20 15:23:30' -E '2016-10-20 15:24:00' 2>>test9.out
|
||||
|
||||
diff test9.out "$srcdir/test9.gold"
|
||||
|
|
|
|||
11
src/test/test_edns.sh
Executable file
11
src/test/test_edns.sh
Executable file
|
|
@ -0,0 +1,11 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
test -e edns.pcap || ln -s "$srcdir/edns.pcap" edns.pcap
|
||||
|
||||
../dnscap -g -r edns.pcap 2>edns.out
|
||||
|
||||
mv edns.out edns.out.old
|
||||
grep -v "^libgcov profiling error:" edns.out.old > edns.out
|
||||
rm edns.out.old
|
||||
|
||||
diff edns.out "$srcdir/edns.gold"
|
||||
|
|
@ -1,4 +1,4 @@
|
|||
[208] 2016-10-20 15:23:01.077982 [#0 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:01.077982 [#0 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].53199 \
|
||||
dns QUERY,NOERROR,59311,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -11,7 +11,7 @@
|
|||
ns1.google.com.,IN,A,331882,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157880,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157880,216.239.38.10
|
||||
[289] 2016-10-20 15:23:01.084107 [#1 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:23:01.084107 [#1 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].57822 \
|
||||
dns QUERY,NOERROR,35665,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -25,7 +25,7 @@
|
|||
ns3.google.com.,IN,A,157880,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157880,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157880,216.239.34.10
|
||||
[208] 2016-10-20 15:23:01.088733 [#2 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:01.088733 [#2 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].40043 \
|
||||
dns QUERY,NOERROR,5337,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -38,7 +38,7 @@
|
|||
ns1.google.com.,IN,A,331882,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157880,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157880,216.239.38.10
|
||||
[208] 2016-10-20 15:23:10.323399 [#3 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:10.323399 [#3 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].37953 \
|
||||
dns QUERY,NOERROR,22982,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -51,7 +51,7 @@
|
|||
ns1.google.com.,IN,A,331872,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157870,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157870,216.239.38.10
|
||||
[289] 2016-10-20 15:23:10.329572 [#4 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:23:10.329572 [#4 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].48658 \
|
||||
dns QUERY,NOERROR,18718,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -65,7 +65,7 @@
|
|||
ns3.google.com.,IN,A,157870,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157870,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157870,216.239.34.10
|
||||
[208] 2016-10-20 15:23:52.863771 [#5 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:52.863771 [#5 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].40953 \
|
||||
dns QUERY,NOERROR,22531,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -78,7 +78,7 @@
|
|||
ns1.google.com.,IN,A,331830,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157828,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157828,216.239.38.10
|
||||
[208] 2016-10-20 15:23:59.086104 [#6 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:23:59.086104 [#6 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].45174 \
|
||||
dns QUERY,NOERROR,58510,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -91,7 +91,7 @@
|
|||
ns1.google.com.,IN,A,331824,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157822,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157822,216.239.38.10
|
||||
[289] 2016-10-20 15:23:59.092204 [#7 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:23:59.092204 [#7 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].33916 \
|
||||
dns QUERY,NOERROR,45248,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -105,7 +105,7 @@
|
|||
ns3.google.com.,IN,A,157822,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157822,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157822,216.239.34.10
|
||||
[208] 2016-10-20 15:24:04.325597 [#8 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:04.325597 [#8 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].43559 \
|
||||
dns QUERY,NOERROR,49483,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -118,7 +118,7 @@
|
|||
ns1.google.com.,IN,A,331818,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157816,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157816,216.239.38.10
|
||||
[208] 2016-10-20 15:24:06.333743 [#9 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:06.333743 [#9 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].54859 \
|
||||
dns QUERY,NOERROR,31669,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -131,7 +131,7 @@
|
|||
ns1.google.com.,IN,A,331816,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157814,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157814,216.239.38.10
|
||||
[289] 2016-10-20 15:24:06.340820 [#10 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:06.340820 [#10 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].58176 \
|
||||
dns QUERY,NOERROR,25433,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -145,7 +145,7 @@
|
|||
ns3.google.com.,IN,A,157814,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157814,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157814,216.239.34.10
|
||||
[208] 2016-10-20 15:24:07.348160 [#11 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:07.348160 [#11 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].41266 \
|
||||
dns QUERY,NOERROR,63798,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -158,7 +158,7 @@
|
|||
ns1.google.com.,IN,A,331815,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157813,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157813,216.239.38.10
|
||||
[289] 2016-10-20 15:24:07.354682 [#12 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:07.354682 [#12 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].34607 \
|
||||
dns QUERY,NOERROR,8470,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -172,7 +172,7 @@
|
|||
ns3.google.com.,IN,A,157813,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157813,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157813,216.239.34.10
|
||||
[208] 2016-10-20 15:24:08.362206 [#13 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:08.362206 [#13 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].60437 \
|
||||
dns QUERY,NOERROR,60258,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -185,7 +185,7 @@
|
|||
ns1.google.com.,IN,A,331814,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157812,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157812,216.239.38.10
|
||||
[289] 2016-10-20 15:24:08.370119 [#14 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:08.370119 [#14 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].37149 \
|
||||
dns QUERY,NOERROR,44985,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -199,7 +199,7 @@
|
|||
ns3.google.com.,IN,A,157812,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157812,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157812,216.239.34.10
|
||||
[208] 2016-10-20 15:24:09.378425 [#15 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:09.378425 [#15 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].53820 \
|
||||
dns QUERY,NOERROR,45512,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -212,7 +212,7 @@
|
|||
ns1.google.com.,IN,A,331813,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157811,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157811,216.239.38.10
|
||||
[289] 2016-10-20 15:24:09.385463 [#16 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:09.385463 [#16 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].52368 \
|
||||
dns QUERY,NOERROR,22980,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -226,7 +226,7 @@
|
|||
ns3.google.com.,IN,A,157811,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157811,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157811,216.239.34.10
|
||||
[208] 2016-10-20 15:24:10.392886 [#17 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:10.392886 [#17 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].47637 \
|
||||
dns QUERY,NOERROR,1834,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -239,7 +239,7 @@
|
|||
ns1.google.com.,IN,A,331812,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157810,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157810,216.239.38.10
|
||||
[289] 2016-10-20 15:24:10.400317 [#18 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:10.400317 [#18 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].34426 \
|
||||
dns QUERY,NOERROR,25431,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -253,7 +253,7 @@
|
|||
ns3.google.com.,IN,A,157810,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157810,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157810,216.239.34.10
|
||||
[208] 2016-10-20 15:24:11.407460 [#19 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:11.407460 [#19 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].41059 \
|
||||
dns QUERY,NOERROR,48432,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -266,7 +266,7 @@
|
|||
ns1.google.com.,IN,A,331811,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157809,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157809,216.239.38.10
|
||||
[289] 2016-10-20 15:24:11.413370 [#20 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:11.413370 [#20 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].51181 \
|
||||
dns QUERY,NOERROR,47411,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -280,7 +280,7 @@
|
|||
ns3.google.com.,IN,A,157809,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157809,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157809,216.239.34.10
|
||||
[208] 2016-10-20 15:24:12.421228 [#21 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:12.421228 [#21 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].32976 \
|
||||
dns QUERY,NOERROR,12038,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -293,7 +293,7 @@
|
|||
ns1.google.com.,IN,A,331810,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157808,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157808,216.239.38.10
|
||||
[208] 2016-10-20 15:24:14.429863 [#22 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:14.429863 [#22 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].53467 \
|
||||
dns QUERY,NOERROR,11614,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -306,7 +306,7 @@
|
|||
ns1.google.com.,IN,A,331808,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157806,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157806,216.239.38.10
|
||||
[208] 2016-10-20 15:24:16.437471 [#23 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:16.437471 [#23 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].41532 \
|
||||
dns QUERY,NOERROR,59173,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -319,7 +319,7 @@
|
|||
ns1.google.com.,IN,A,331806,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157804,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157804,216.239.38.10
|
||||
[208] 2016-10-20 15:24:18.446775 [#24 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:18.446775 [#24 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].44982 \
|
||||
dns QUERY,NOERROR,45535,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -332,7 +332,7 @@
|
|||
ns1.google.com.,IN,A,331804,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157802,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157802,216.239.38.10
|
||||
[289] 2016-10-20 15:24:18.454030 [#25 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:18.454030 [#25 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].40224 \
|
||||
dns QUERY,NOERROR,60808,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -346,7 +346,7 @@
|
|||
ns3.google.com.,IN,A,157802,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157802,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157802,216.239.34.10
|
||||
[208] 2016-10-20 15:24:19.462224 [#26 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:19.462224 [#26 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].45658 \
|
||||
dns QUERY,NOERROR,64325,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -359,7 +359,7 @@
|
|||
ns1.google.com.,IN,A,331803,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157801,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157801,216.239.38.10
|
||||
[289] 2016-10-20 15:24:19.468895 [#27 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:19.468895 [#27 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].60457 \
|
||||
dns QUERY,NOERROR,25543,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -373,7 +373,7 @@
|
|||
ns3.google.com.,IN,A,157801,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157801,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157801,216.239.34.10
|
||||
[208] 2016-10-20 15:24:20.476841 [#28 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:20.476841 [#28 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].59762 \
|
||||
dns QUERY,NOERROR,20736,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -386,7 +386,7 @@
|
|||
ns1.google.com.,IN,A,331802,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157800,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157800,216.239.38.10
|
||||
[289] 2016-10-20 15:24:20.483927 [#29 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:20.483927 [#29 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].56022 \
|
||||
dns QUERY,NOERROR,25911,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -400,7 +400,7 @@
|
|||
ns3.google.com.,IN,A,157800,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157800,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157800,216.239.34.10
|
||||
[208] 2016-10-20 15:24:21.490573 [#30 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:21.490573 [#30 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].37669 \
|
||||
dns QUERY,NOERROR,64358,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -413,7 +413,7 @@
|
|||
ns1.google.com.,IN,A,331801,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157799,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157799,216.239.38.10
|
||||
[289] 2016-10-20 15:24:21.496815 [#31 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:21.496815 [#31 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].42978 \
|
||||
dns QUERY,NOERROR,37698,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -427,7 +427,7 @@
|
|||
ns3.google.com.,IN,A,157799,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157799,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157799,216.239.34.10
|
||||
[208] 2016-10-20 15:24:22.504738 [#32 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:22.504738 [#32 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].49829 \
|
||||
dns QUERY,NOERROR,54706,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -440,7 +440,7 @@
|
|||
ns1.google.com.,IN,A,331800,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157798,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157798,216.239.38.10
|
||||
[289] 2016-10-20 15:24:22.511746 [#33 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:22.511746 [#33 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].50599 \
|
||||
dns QUERY,NOERROR,32142,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -454,7 +454,7 @@
|
|||
ns3.google.com.,IN,A,157798,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157798,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157798,216.239.34.10
|
||||
[208] 2016-10-20 15:24:23.521976 [#34 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:23.521976 [#34 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].44980 \
|
||||
dns QUERY,NOERROR,41808,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -467,7 +467,7 @@
|
|||
ns1.google.com.,IN,A,331799,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157797,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157797,216.239.38.10
|
||||
[289] 2016-10-20 15:24:23.529385 [#35 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:23.529385 [#35 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].60063 \
|
||||
dns QUERY,NOERROR,18886,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -481,7 +481,7 @@
|
|||
ns3.google.com.,IN,A,157797,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157797,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157797,216.239.34.10
|
||||
[208] 2016-10-20 15:24:24.539398 [#36 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:24.539398 [#36 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].42042 \
|
||||
dns QUERY,NOERROR,10624,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -494,7 +494,7 @@
|
|||
ns1.google.com.,IN,A,331798,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157796,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157796,216.239.38.10
|
||||
[289] 2016-10-20 15:24:24.546172 [#37 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:24.546172 [#37 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].60469 \
|
||||
dns QUERY,NOERROR,33139,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -508,7 +508,7 @@
|
|||
ns3.google.com.,IN,A,157796,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157796,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157796,216.239.34.10
|
||||
[208] 2016-10-20 15:24:25.556513 [#38 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:25.556513 [#38 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].45703 \
|
||||
dns QUERY,NOERROR,61415,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -521,7 +521,7 @@
|
|||
ns1.google.com.,IN,A,331797,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157795,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157795,216.239.38.10
|
||||
[289] 2016-10-20 15:24:25.564509 [#39 dns.pcap-dist 4095] \
|
||||
[289] 2016-10-20 15:24:25.564509 [#39 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].33507 \
|
||||
dns QUERY,NOERROR,59258,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -535,7 +535,7 @@
|
|||
ns3.google.com.,IN,A,157795,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157795,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157795,216.239.34.10
|
||||
[208] 2016-10-20 15:24:26.574350 [#40 dns.pcap-dist 4095] \
|
||||
[208] 2016-10-20 15:24:26.574350 [#40 dns.pcap 4095] \
|
||||
[8.8.8.8].53 [172.17.0.10].46798 \
|
||||
dns QUERY,NOERROR,17700,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -548,167 +548,167 @@
|
|||
ns1.google.com.,IN,A,331796,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157794,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157794,216.239.38.10
|
||||
[56] 2016-10-20 15:23:01.075993 [#0 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:01.075993 [#0 dns.pcap 4095] \
|
||||
[172.17.0.10].53199 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:23:01.082865 [#1 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:23:01.082865 [#1 dns.pcap 4095] \
|
||||
[172.17.0.10].57822 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,35665,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:23:01.087291 [#2 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:01.087291 [#2 dns.pcap 4095] \
|
||||
[172.17.0.10].40043 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,5337,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[56] 2016-10-20 15:23:10.322117 [#3 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:10.322117 [#3 dns.pcap 4095] \
|
||||
[172.17.0.10].37953 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22982,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:23:10.328324 [#4 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:23:10.328324 [#4 dns.pcap 4095] \
|
||||
[172.17.0.10].48658 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,18718,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:23:52.860937 [#5 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:52.860937 [#5 dns.pcap 4095] \
|
||||
[172.17.0.10].40953 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22531,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[56] 2016-10-20 15:23:59.083869 [#6 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:23:59.083869 [#6 dns.pcap 4095] \
|
||||
[172.17.0.10].45174 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,58510,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:23:59.090911 [#7 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:23:59.090911 [#7 dns.pcap 4095] \
|
||||
[172.17.0.10].33916 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45248,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:04.323868 [#8 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:04.323868 [#8 dns.pcap 4095] \
|
||||
[172.17.0.10].43559 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,49483,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[56] 2016-10-20 15:24:06.332239 [#9 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:06.332239 [#9 dns.pcap 4095] \
|
||||
[172.17.0.10].54859 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,31669,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:06.339145 [#10 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:06.339145 [#10 dns.pcap 4095] \
|
||||
[172.17.0.10].58176 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25433,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:07.346429 [#11 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:07.346429 [#11 dns.pcap 4095] \
|
||||
[172.17.0.10].41266 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,63798,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:07.353123 [#12 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:07.353123 [#12 dns.pcap 4095] \
|
||||
[172.17.0.10].34607 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,8470,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:08.360528 [#13 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:08.360528 [#13 dns.pcap 4095] \
|
||||
[172.17.0.10].60437 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,60258,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:08.368516 [#14 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:08.368516 [#14 dns.pcap 4095] \
|
||||
[172.17.0.10].37149 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,44985,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:09.375942 [#15 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:09.375942 [#15 dns.pcap 4095] \
|
||||
[172.17.0.10].53820 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45512,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:09.384057 [#16 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:09.384057 [#16 dns.pcap 4095] \
|
||||
[172.17.0.10].52368 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22980,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:10.391358 [#17 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:10.391358 [#17 dns.pcap 4095] \
|
||||
[172.17.0.10].47637 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,1834,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:10.398099 [#18 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:10.398099 [#18 dns.pcap 4095] \
|
||||
[172.17.0.10].34426 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25431,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:11.406297 [#19 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:11.406297 [#19 dns.pcap 4095] \
|
||||
[172.17.0.10].41059 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,48432,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:11.412133 [#20 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:11.412133 [#20 dns.pcap 4095] \
|
||||
[172.17.0.10].51181 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,47411,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:12.419936 [#21 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:12.419936 [#21 dns.pcap 4095] \
|
||||
[172.17.0.10].32976 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,12038,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[56] 2016-10-20 15:24:14.428524 [#22 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:14.428524 [#22 dns.pcap 4095] \
|
||||
[172.17.0.10].53467 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,11614,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[56] 2016-10-20 15:24:16.435733 [#23 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:16.435733 [#23 dns.pcap 4095] \
|
||||
[172.17.0.10].41532 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59173,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[56] 2016-10-20 15:24:18.445519 [#24 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:18.445519 [#24 dns.pcap 4095] \
|
||||
[172.17.0.10].44982 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45535,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:18.452451 [#25 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:18.452451 [#25 dns.pcap 4095] \
|
||||
[172.17.0.10].40224 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,60808,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:19.460087 [#26 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:19.460087 [#26 dns.pcap 4095] \
|
||||
[172.17.0.10].45658 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,64325,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:19.467324 [#27 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:19.467324 [#27 dns.pcap 4095] \
|
||||
[172.17.0.10].60457 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25543,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:20.475086 [#28 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:20.475086 [#28 dns.pcap 4095] \
|
||||
[172.17.0.10].59762 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,20736,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:20.482188 [#29 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:20.482188 [#29 dns.pcap 4095] \
|
||||
[172.17.0.10].56022 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25911,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:21.489468 [#30 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:21.489468 [#30 dns.pcap 4095] \
|
||||
[172.17.0.10].37669 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,64358,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:21.495324 [#31 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:21.495324 [#31 dns.pcap 4095] \
|
||||
[172.17.0.10].42978 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,37698,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:22.502667 [#32 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:22.502667 [#32 dns.pcap 4095] \
|
||||
[172.17.0.10].49829 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,54706,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:22.510176 [#33 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:22.510176 [#33 dns.pcap 4095] \
|
||||
[172.17.0.10].50599 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,32142,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:23.520203 [#34 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:23.520203 [#34 dns.pcap 4095] \
|
||||
[172.17.0.10].44980 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,41808,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:23.527449 [#35 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:23.527449 [#35 dns.pcap 4095] \
|
||||
[172.17.0.10].60063 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,18886,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:24.537264 [#36 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:24.537264 [#36 dns.pcap 4095] \
|
||||
[172.17.0.10].42042 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,10624,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:24.544538 [#37 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:24.544538 [#37 dns.pcap 4095] \
|
||||
[172.17.0.10].60469 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,33139,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:25.554744 [#38 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:25.554744 [#38 dns.pcap 4095] \
|
||||
[172.17.0.10].45703 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,61415,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[73] 2016-10-20 15:24:25.562608 [#39 dns.pcap-dist 4095] \
|
||||
[73] 2016-10-20 15:24:25.562608 [#39 dns.pcap 4095] \
|
||||
[172.17.0.10].33507 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59258,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[56] 2016-10-20 15:24:26.572784 [#40 dns.pcap-dist 4095] \
|
||||
[56] 2016-10-20 15:24:26.572784 [#40 dns.pcap 4095] \
|
||||
[172.17.0.10].46798 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,17700,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
|
|
|
|||
|
|
@ -1,8 +1,8 @@
|
|||
#!/bin/sh -xe
|
||||
|
||||
../dnscap -g -r dns.pcap-dist -x 'ns1' 2>test_regex_match.out
|
||||
../dnscap -g -r dns.pcap-dist -X 'ns1' 2>>test_regex_match.out
|
||||
../dnscap -g -r dns.pcap-dist -x 'ns1' -X 'ns1' 2>>test_regex_match.out
|
||||
../dnscap -g -r dns.pcap -x 'ns1' 2>test_regex_match.out
|
||||
../dnscap -g -r dns.pcap -X 'ns1' 2>>test_regex_match.out
|
||||
../dnscap -g -r dns.pcap -x 'ns1' -X 'ns1' 2>>test_regex_match.out
|
||||
|
||||
mv test_regex_match.out test_regex_match.out.old
|
||||
grep -v "^libgcov profiling error:" test_regex_match.out.old > test_regex_match.out
|
||||
|
|
|
|||
|
|
@ -1,8 +1,8 @@
|
|||
[56] 2016-10-20 15:23:01.075993 [#0 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:23:01.075993 [#0 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].53199 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59311,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:01.077982 [#1 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:23:01.077982 [#1 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].53199 \
|
||||
dns QUERY,NOERROR,59311,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -15,11 +15,11 @@
|
|||
ns1.google.com.,IN,A,331882,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157880,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157880,216.239.38.10
|
||||
[73] 2016-10-20 15:23:01.082865 [#2 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:23:01.082865 [#2 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].57822 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,35665,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:23:01.084107 [#3 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:23:01.084107 [#3 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].57822 \
|
||||
dns QUERY,NOERROR,35665,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -33,11 +33,11 @@
|
|||
ns3.google.com.,IN,A,157880,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157880,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157880,216.239.34.10
|
||||
[56] 2016-10-20 15:23:01.087291 [#4 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:23:01.087291 [#4 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].40043 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,5337,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:01.088733 [#5 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:23:01.088733 [#5 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].40043 \
|
||||
dns QUERY,NOERROR,5337,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -50,11 +50,11 @@
|
|||
ns1.google.com.,IN,A,331882,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157880,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157880,216.239.38.10
|
||||
[56] 2016-10-20 15:23:10.322117 [#6 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:23:10.322117 [#6 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].37953 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22982,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:10.323399 [#7 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:23:10.323399 [#7 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].37953 \
|
||||
dns QUERY,NOERROR,22982,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -67,11 +67,11 @@
|
|||
ns1.google.com.,IN,A,331872,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157870,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157870,216.239.38.10
|
||||
[73] 2016-10-20 15:23:10.328324 [#8 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:23:10.328324 [#8 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].48658 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,18718,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:23:10.329572 [#9 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:23:10.329572 [#9 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].48658 \
|
||||
dns QUERY,NOERROR,18718,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -85,11 +85,11 @@
|
|||
ns3.google.com.,IN,A,157870,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157870,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157870,216.239.34.10
|
||||
[56] 2016-10-20 15:23:52.860937 [#10 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:23:52.860937 [#10 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].40953 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22531,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:52.863771 [#11 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:23:52.863771 [#11 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].40953 \
|
||||
dns QUERY,NOERROR,22531,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -102,11 +102,11 @@
|
|||
ns1.google.com.,IN,A,331830,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157828,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157828,216.239.38.10
|
||||
[56] 2016-10-20 15:23:59.083869 [#12 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:23:59.083869 [#12 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].45174 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,58510,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:23:59.086104 [#13 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:23:59.086104 [#13 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].45174 \
|
||||
dns QUERY,NOERROR,58510,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -119,11 +119,11 @@
|
|||
ns1.google.com.,IN,A,331824,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157822,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157822,216.239.38.10
|
||||
[73] 2016-10-20 15:23:59.090911 [#14 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:23:59.090911 [#14 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].33916 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45248,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:23:59.092204 [#15 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:23:59.092204 [#15 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].33916 \
|
||||
dns QUERY,NOERROR,45248,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -137,11 +137,11 @@
|
|||
ns3.google.com.,IN,A,157822,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157822,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157822,216.239.34.10
|
||||
[56] 2016-10-20 15:24:04.323868 [#16 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:04.323868 [#16 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].43559 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,49483,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:04.325597 [#17 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:04.325597 [#17 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].43559 \
|
||||
dns QUERY,NOERROR,49483,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -154,11 +154,11 @@
|
|||
ns1.google.com.,IN,A,331818,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157816,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157816,216.239.38.10
|
||||
[56] 2016-10-20 15:24:06.332239 [#18 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:06.332239 [#18 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].54859 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,31669,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:06.333743 [#19 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:06.333743 [#19 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].54859 \
|
||||
dns QUERY,NOERROR,31669,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -171,11 +171,11 @@
|
|||
ns1.google.com.,IN,A,331816,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157814,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157814,216.239.38.10
|
||||
[73] 2016-10-20 15:24:06.339145 [#20 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:06.339145 [#20 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].58176 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25433,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:06.340820 [#21 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:06.340820 [#21 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].58176 \
|
||||
dns QUERY,NOERROR,25433,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -189,11 +189,11 @@
|
|||
ns3.google.com.,IN,A,157814,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157814,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157814,216.239.34.10
|
||||
[56] 2016-10-20 15:24:07.346429 [#22 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:07.346429 [#22 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].41266 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,63798,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:07.348160 [#23 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:07.348160 [#23 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].41266 \
|
||||
dns QUERY,NOERROR,63798,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -206,11 +206,11 @@
|
|||
ns1.google.com.,IN,A,331815,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157813,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157813,216.239.38.10
|
||||
[73] 2016-10-20 15:24:07.353123 [#24 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:07.353123 [#24 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].34607 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,8470,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:07.354682 [#25 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:07.354682 [#25 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].34607 \
|
||||
dns QUERY,NOERROR,8470,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -224,11 +224,11 @@
|
|||
ns3.google.com.,IN,A,157813,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157813,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157813,216.239.34.10
|
||||
[56] 2016-10-20 15:24:08.360528 [#26 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:08.360528 [#26 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].60437 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,60258,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:08.362206 [#27 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:08.362206 [#27 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].60437 \
|
||||
dns QUERY,NOERROR,60258,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -241,11 +241,11 @@
|
|||
ns1.google.com.,IN,A,331814,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157812,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157812,216.239.38.10
|
||||
[73] 2016-10-20 15:24:08.368516 [#28 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:08.368516 [#28 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].37149 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,44985,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:08.370119 [#29 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:08.370119 [#29 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].37149 \
|
||||
dns QUERY,NOERROR,44985,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -259,11 +259,11 @@
|
|||
ns3.google.com.,IN,A,157812,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157812,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157812,216.239.34.10
|
||||
[56] 2016-10-20 15:24:09.375942 [#30 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:09.375942 [#30 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].53820 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45512,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:09.378425 [#31 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:09.378425 [#31 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].53820 \
|
||||
dns QUERY,NOERROR,45512,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -276,11 +276,11 @@
|
|||
ns1.google.com.,IN,A,331813,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157811,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157811,216.239.38.10
|
||||
[73] 2016-10-20 15:24:09.384057 [#32 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:09.384057 [#32 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].52368 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,22980,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:09.385463 [#33 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:09.385463 [#33 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].52368 \
|
||||
dns QUERY,NOERROR,22980,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -294,11 +294,11 @@
|
|||
ns3.google.com.,IN,A,157811,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157811,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157811,216.239.34.10
|
||||
[56] 2016-10-20 15:24:10.391358 [#34 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:10.391358 [#34 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].47637 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,1834,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:10.392886 [#35 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:10.392886 [#35 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].47637 \
|
||||
dns QUERY,NOERROR,1834,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -311,11 +311,11 @@
|
|||
ns1.google.com.,IN,A,331812,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157810,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157810,216.239.38.10
|
||||
[73] 2016-10-20 15:24:10.398099 [#36 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:10.398099 [#36 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].34426 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25431,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:10.400317 [#37 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:10.400317 [#37 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].34426 \
|
||||
dns QUERY,NOERROR,25431,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -329,11 +329,11 @@
|
|||
ns3.google.com.,IN,A,157810,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157810,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157810,216.239.34.10
|
||||
[56] 2016-10-20 15:24:11.406297 [#38 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:11.406297 [#38 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].41059 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,48432,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:11.407460 [#39 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:11.407460 [#39 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].41059 \
|
||||
dns QUERY,NOERROR,48432,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -346,11 +346,11 @@
|
|||
ns1.google.com.,IN,A,331811,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157809,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157809,216.239.38.10
|
||||
[73] 2016-10-20 15:24:11.412133 [#40 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:11.412133 [#40 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].51181 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,47411,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:11.413370 [#41 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:11.413370 [#41 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].51181 \
|
||||
dns QUERY,NOERROR,47411,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -364,11 +364,11 @@
|
|||
ns3.google.com.,IN,A,157809,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157809,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157809,216.239.34.10
|
||||
[56] 2016-10-20 15:24:12.419936 [#42 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:12.419936 [#42 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].32976 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,12038,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:12.421228 [#43 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:12.421228 [#43 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].32976 \
|
||||
dns QUERY,NOERROR,12038,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -381,11 +381,11 @@
|
|||
ns1.google.com.,IN,A,331810,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157808,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157808,216.239.38.10
|
||||
[56] 2016-10-20 15:24:14.428524 [#44 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:14.428524 [#44 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].53467 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,11614,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:14.429863 [#45 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:14.429863 [#45 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].53467 \
|
||||
dns QUERY,NOERROR,11614,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -398,11 +398,11 @@
|
|||
ns1.google.com.,IN,A,331808,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157806,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157806,216.239.38.10
|
||||
[56] 2016-10-20 15:24:16.435733 [#46 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:16.435733 [#46 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].41532 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59173,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:16.437471 [#47 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:16.437471 [#47 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].41532 \
|
||||
dns QUERY,NOERROR,59173,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -415,11 +415,11 @@
|
|||
ns1.google.com.,IN,A,331806,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157804,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157804,216.239.38.10
|
||||
[56] 2016-10-20 15:24:18.445519 [#48 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:18.445519 [#48 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].44982 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,45535,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:18.446775 [#49 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:18.446775 [#49 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].44982 \
|
||||
dns QUERY,NOERROR,45535,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -432,11 +432,11 @@
|
|||
ns1.google.com.,IN,A,331804,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157802,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157802,216.239.38.10
|
||||
[73] 2016-10-20 15:24:18.452451 [#50 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:18.452451 [#50 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].40224 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,60808,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:18.454030 [#51 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:18.454030 [#51 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].40224 \
|
||||
dns QUERY,NOERROR,60808,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -450,11 +450,11 @@
|
|||
ns3.google.com.,IN,A,157802,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157802,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157802,216.239.34.10
|
||||
[56] 2016-10-20 15:24:19.460087 [#52 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:19.460087 [#52 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].45658 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,64325,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:19.462224 [#53 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:19.462224 [#53 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].45658 \
|
||||
dns QUERY,NOERROR,64325,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -467,11 +467,11 @@
|
|||
ns1.google.com.,IN,A,331803,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157801,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157801,216.239.38.10
|
||||
[73] 2016-10-20 15:24:19.467324 [#54 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:19.467324 [#54 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].60457 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25543,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:19.468895 [#55 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:19.468895 [#55 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].60457 \
|
||||
dns QUERY,NOERROR,25543,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -485,11 +485,11 @@
|
|||
ns3.google.com.,IN,A,157801,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157801,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157801,216.239.34.10
|
||||
[56] 2016-10-20 15:24:20.475086 [#56 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:20.475086 [#56 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].59762 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,20736,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:20.476841 [#57 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:20.476841 [#57 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].59762 \
|
||||
dns QUERY,NOERROR,20736,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -502,11 +502,11 @@
|
|||
ns1.google.com.,IN,A,331802,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157800,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157800,216.239.38.10
|
||||
[73] 2016-10-20 15:24:20.482188 [#58 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:20.482188 [#58 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].56022 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,25911,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:20.483927 [#59 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:20.483927 [#59 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].56022 \
|
||||
dns QUERY,NOERROR,25911,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -520,11 +520,11 @@
|
|||
ns3.google.com.,IN,A,157800,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157800,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157800,216.239.34.10
|
||||
[56] 2016-10-20 15:24:21.489468 [#60 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:21.489468 [#60 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].37669 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,64358,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:21.490573 [#61 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:21.490573 [#61 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].37669 \
|
||||
dns QUERY,NOERROR,64358,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -537,11 +537,11 @@
|
|||
ns1.google.com.,IN,A,331801,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157799,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157799,216.239.38.10
|
||||
[73] 2016-10-20 15:24:21.495324 [#62 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:21.495324 [#62 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].42978 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,37698,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:21.496815 [#63 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:21.496815 [#63 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].42978 \
|
||||
dns QUERY,NOERROR,37698,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -555,11 +555,11 @@
|
|||
ns3.google.com.,IN,A,157799,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157799,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157799,216.239.34.10
|
||||
[56] 2016-10-20 15:24:22.502667 [#64 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:22.502667 [#64 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].49829 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,54706,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:22.504738 [#65 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:22.504738 [#65 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].49829 \
|
||||
dns QUERY,NOERROR,54706,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -572,11 +572,11 @@
|
|||
ns1.google.com.,IN,A,331800,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157798,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157798,216.239.38.10
|
||||
[73] 2016-10-20 15:24:22.510176 [#66 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:22.510176 [#66 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].50599 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,32142,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:22.511746 [#67 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:22.511746 [#67 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].50599 \
|
||||
dns QUERY,NOERROR,32142,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -590,11 +590,11 @@
|
|||
ns3.google.com.,IN,A,157798,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157798,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157798,216.239.34.10
|
||||
[56] 2016-10-20 15:24:23.520203 [#68 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:23.520203 [#68 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].44980 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,41808,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:23.521976 [#69 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:23.521976 [#69 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].44980 \
|
||||
dns QUERY,NOERROR,41808,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -607,11 +607,11 @@
|
|||
ns1.google.com.,IN,A,331799,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157797,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157797,216.239.38.10
|
||||
[73] 2016-10-20 15:24:23.527449 [#70 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:23.527449 [#70 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].60063 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,18886,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:23.529385 [#71 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:23.529385 [#71 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].60063 \
|
||||
dns QUERY,NOERROR,18886,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -625,11 +625,11 @@
|
|||
ns3.google.com.,IN,A,157797,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157797,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157797,216.239.34.10
|
||||
[56] 2016-10-20 15:24:24.537264 [#72 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:24.537264 [#72 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].42042 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,10624,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:24.539398 [#73 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:24.539398 [#73 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].42042 \
|
||||
dns QUERY,NOERROR,10624,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -642,11 +642,11 @@
|
|||
ns1.google.com.,IN,A,331798,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157796,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157796,216.239.38.10
|
||||
[73] 2016-10-20 15:24:24.544538 [#74 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:24.544538 [#74 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].60469 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,33139,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:24.546172 [#75 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:24.546172 [#75 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].60469 \
|
||||
dns QUERY,NOERROR,33139,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -660,11 +660,11 @@
|
|||
ns3.google.com.,IN,A,157796,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157796,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157796,216.239.34.10
|
||||
[56] 2016-10-20 15:24:25.554744 [#76 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:25.554744 [#76 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].45703 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,61415,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:25.556513 [#77 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:25.556513 [#77 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].45703 \
|
||||
dns QUERY,NOERROR,61415,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
@ -677,11 +677,11 @@
|
|||
ns1.google.com.,IN,A,331797,216.239.32.10 \
|
||||
ns3.google.com.,IN,A,157795,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157795,216.239.38.10
|
||||
[73] 2016-10-20 15:24:25.562608 [#78 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[73] 2016-10-20 15:24:25.562608 [#78 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].33507 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,59258,rd \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR 0 0 0
|
||||
[289] 2016-10-20 15:24:25.564509 [#79 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[289] 2016-10-20 15:24:25.564509 [#79 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].33507 \
|
||||
dns QUERY,NOERROR,59258,qr|rd|ra \
|
||||
1 206.218.58.216.in-addr.arpa.,IN,PTR \
|
||||
|
|
@ -695,11 +695,11 @@
|
|||
ns3.google.com.,IN,A,157795,216.239.36.10 \
|
||||
ns4.google.com.,IN,A,157795,216.239.38.10 \
|
||||
ns2.google.com.,IN,A,157795,216.239.34.10
|
||||
[56] 2016-10-20 15:24:26.572784 [#80 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[56] 2016-10-20 15:24:26.572784 [#80 vlan11.pcap (vlan 11) 11] \
|
||||
[172.17.0.10].46798 [8.8.8.8].53 \
|
||||
dns QUERY,NOERROR,17700,rd \
|
||||
1 google.com.,IN,A 0 0 0
|
||||
[208] 2016-10-20 15:24:26.574350 [#81 vlan11.pcap-dist (vlan 11) 11] \
|
||||
[208] 2016-10-20 15:24:26.574350 [#81 vlan11.pcap (vlan 11) 11] \
|
||||
[8.8.8.8].53 [172.17.0.10].46798 \
|
||||
dns QUERY,NOERROR,17700,qr|rd|ra \
|
||||
1 google.com.,IN,A \
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue