IrineSistiana
commented
3 years ago ~感觉这个功能可以做一个单独插件。更方便。~
想了想除了恶意请求,nxdomain域名应该很少。不会影响什么
Closed yuanhaoliang closed 2 years ago
IrineSistiana
commented
3 years ago ~感觉这个功能可以做一个单独插件。更方便。~
想了想除了恶意请求,nxdomain域名应该很少。不会影响什么
yuanhaoliang
commented
2 years ago 我目前收集到这些,来源是:每天请求大于5次的域名,通过本地电信DNS、114、8.8.8.8三个DNS分别测试3次,如果都是nxdomian的话,就录入进来:
myoffice365.site
sbt3cjx3j-qq3-l-.jyc8f5pfd0j7vjqrx1-qt.com
gaty1sabin-r4q-z3.taqsivaj-a1-jq70f7.com
monkey-apollo-svc.default
ggzy.shic.gov.cn
as5lfxnshnflr38o45.gab4cs9n1dz.com
abt.hicloud.com
wg7mrgx1nsi12npuvu757.vrph2oof66php3oe.com
autodiscover.cicc.com.cn
7oy26zsib6lvac6j073b.qro1klpwf416gf9euegt.com
imlong.gpsoo.net
regist.fotoable.com
l5a7p5j0zoejs363rha52.0wk5cbv6cf730n.com
pq.f.360.cn
count.typora.io
l3q4j-cau53zd-.6kmf87eu0a4qqo6ox96hd.com
hometwn-console-api.coro.net
p40-acsegateway.icloud.com.cn
vdn2.vzuu.com
daypass.api-glb-hkg.smoot.apple.com
file.36krcnd.com
static.zhimg.com
p29-acsegateway.icloud.com.cn
desktop.shimo.im
jdzu7sgcktw9t6c5phq6knoa1hk.yi3i8k8kz4ftd.com
peh2r08pg3ar4.86ipm3womi2.com
hyjal.dapps.douban.com
qlviu4lvakzxbyknm6id41pa.yga91r12bcyoodie4.com
ug69r95nrpikpu4v.m8p7kne9kujz8v7dclmj9tu.com
wspeed.qq.com
www.lkme.cc
tosv.byted.org
inimino.org
odps.alibaba.net
www.beian.miit.gov.cn
gss.updrv.com
community.gpsoo.net
dp2.im.weibo.cn
w4y082pa7eg6.ndug2d0c9sl31cy5m.com
oa-panther.data.aliyun.com
jrebel.npegeek.com
k7qfoa3eqiqi76163efhipl.duledget0c9.com
uop.umeng.com
ailat3t4yu.0wi4s7bg1qjpih259q82u.com
kdyimg.hcc11.com
img.36krcnd.com
live-play.acgvideo.com
af49p5rlv8g-efth8-2suvh4.0ab77927.com
enjoy.ricebook.com
br.vs.co
szgyuul05ldazlsch6k5e.0h4e9sqxew77ok5wljkefabec.com
g8c468li1lhjxry95.cdytyid93.com
atttachments.tower.im
my.asics.com
n6pkc82i.8x4bcsx2ud6n0.com
nrphx-v9maefk2ryg0q9.khq6omdf5b.com
2021001151654694.eco.dingtalkapps.com
gate.hockeyapp.net
csc3-2009-2-crl.verisign.com
tst-apple.xiaohongshu.com
mdp-appconf-cn.heytapdl.com
lab.oldj.net
1fir6mjrotmuwch.x4htahuw437nj6rerid.com
udfgaj2x9d.6n1okry0ws1bd.com
bjcrl.cicc.com.cn
nj.baidupcs.com
cm.optaim.com
amisapi.ime-php7.sz-orp.int.baidu.com
2vm8jplqv6pkro.tinxi0i-zdi6oj2s.com
lb-stat-appletuner-1473976220.us-west-1.elb.amazonaws.com
p0u8n8sj18vxw.zctqs5wrtb70piuf3.com
www.nach.gov.cn
jd.cn
tajs.qq.com
5quq9sm-733x7g-kk4ivoa2qi.gbmeckf0hz0hg6ombzja03cne.com
isdspeed.qq.com
mobile-pubt.ele.me
hoc3ksbhdiqu05.pxkaco1o79z3dck.com
2t38j-j80dxw8oqec01i.xfn-r6yppn.com
5ru6j18-nshefv9xm.wvpjnh1j0-jd.com
local.ithome.com
td.creditcard.cmbc.com.cn
ps9-uw84m42b47eqjrl.f1d1x67jls8s5s7ysir57nej--w.com
20000793.h5app.alipay.com
idinfo.zjaic.gov.cn
ws02.pull.yximgs.com
b5zj093nk-ckfqq73.arnlg5o5n20z6lfnxrkgr.com
zv4q-ty8r-jt5ymd3m-ee2dc2xh.jwynp36oxn.com
huatuocode.huatuo.qq.com
apm-misaka.biliapi.net
mfl35-awoztbkvumzzrh.p7hwn2z0nl71ve4mnq6hje.com
api.iphone.go.yahoo.com
9p30jiqbx70lm-2kzkk4o.hma38sumz9w76oi9u6ar4w8.com
hx6ypwk7n8.3e4x5a9q3x3q8yemiv--.com
c8tbwvkwkj7fj.325e2pv52wox-3.com
s.ssl.qhres.com
upext.se.360.cn
pre-api.miui.security.xiaomi.com
download.shuzilm.cn
push.ele.me
l1flg4d3fadq2i68o9m0.3poj-2n4nyik8d3-ojj.com
msstestdn.sankuai.com
relate.apc.360.cn
event.xiaohongshu.com
pv.img.eol.cn
zf6mm0veov.y0f62qqnc3wk0evbbe0x7.com
qnyyx1stl4mkezx.854h7p8mzgc7r.com
smarturlcn-up.maxthon.com
offlinebeijing-bj.test.vip.sankuai.com
maps.google.com.iq
u14s9rdj76mw10olww0d71qmy9.3higqwy-xhrhz4b.com
bnkae5340.htpigo-pw.com
epaper.jinghua.cn
60000003.12306.cn
60000001.12306.cn
tlz6-ne21y159ova4nyqio5pkdx.zr-500g6006uth27ukz5w9lszf.com
fddsc.fadada.com
smyz.samr.gov.cn
t0vrxtvrkufhz8dcm5avg9chzwjpq7gk.yundunwaf4.com
2xoa5dst0w6bq66.a8yvg611xok8v-xvbl7ilwv00fp.com
www.codezen.xyz
www.nmgs.gov.cn
fwrcx8pg6u7tdv.j0dj2sab550h8cu9pymru3s2pd.com
byksv0xpaxnuofb.r0d696ir.com
z-2pzfrl.khsxlgdn5n6qgtjh4e.com
4vdivdpan-snd7nptpy3r7k4.zsr6vg-nyt6nyq.com
eodga8mkc3.tr-phxfp9wwjq83.com
llsdbyj04o6y761xgtjg9et.3j1kk5ixx2oico43ajre5q.com
sypxhgeqmu.6u442euwfv.com
j9bds2-ap7pkjn56z2s9g0s.g72jpvqkf0ofjsndokgns1.com
1oyu1rk7wxilpn7nntk2.racuqval-ax.com
hdlabak.douyucdn.cn
i24v2rh62zrl289a3eg3y0fuvk.3bgwvg6wxa9247051kz78v4-u.com
mu2w5-ool.6quprxv7n9-fieqd.com
v6iu5x2jnv7i7o8l38b-vi-q3eo.1utwkgf-1-qchyf5-wjja.com
ay66v8gn.5yv34ipmf.com
k03788busuld2qxwk9tigi4b6.as-25drvpe.com
img.weico.cc
emurr07pterd05z7.idt2s82blymjlt37p-.com
zup9wpooaq8br.ivjivjf6.com
dhh2qw5uxg.q2mzi9-nfq3m.com
2-evkzw6c2yzloqb.r-hl35s3.com
8miw7mdtjr.gryoyfv0xdi3olmf595cjir.com
qwdlrm4awrum90.6lwmearic68yb.com
pvz83n2z6z1tvmroax2.cpehp7cjj1le-7u.com
xgxjd1pgv1.vc2rjyo7inufa.com
s6.qhres.com
cinema-ws.hicloud.com
tuijian.sogou.com
hwucdn-drcn.dbankcdn.com
api.x.xmt.cn
idv0bd1.qiniudns.com
sd.taptap.com
www.thecbu.net
po.im.alisoft.com
sso.open.jddglobal.com
staticoffice.zhihu.com
www.wlanadmin.com
uo0to62rxqh7u.w481p527drk22k0c67eh72j2.com
weili.cardniu.com
images.cnbelec.com
avatar-file.flow.ci
recv2.conac.cn
www.sangforwlanac.com
www.pptv.m.com
cartoonapi.uc.cn
60000002.12306.cn
azwancan.trafficmanager.net
yourhost.example.com
ccdace.hupu.com
cinema-lx.hicloud.com
ahnqab1qhambf30q.1vr3-gk01h0i.com
live-hdl-qcloud.1iptv.com
ifieeo7wisjocqv.wop1qgxlijnac.com
huatuospeed.weiyun.com
3uvuz-9uxgbxd9psb3v3.0tekz6fr6ro.com
60000007.12306.cn
sso.piaogj.cn
st-qn.gittt.cn
live-hdl-pili.1iptv.com
cinema-rrs.hicloud.com
www.sgs.gov.cn
cinema-dl.hicloud.com
sngj4f3irozrz9s1t11axet5.ao66gvbg64-tovpxdn3f9o5.com
csc3-2004-aia.verisign.com
recv1.conac.cn
camhomme.adnonstop.com
its.yngs.gov.cn
www.taocece.com
u60zsms2prkr59e4u2kzldmw3tw.1v7576ilu30ct4n92c.com
c1-5630488yrhux5.uefrcfd-ishii5whkla.com
maintenance.clubhouse.com
www.xunii.com
cinema-tx.hicloud.com
dh3.kimg.cn
img6.douban.com
i-9esbwqbmarrasyuimsy.zt-7vnmr63expg.com
www.msgr.com
0.0.1
tb--5itkezuqzc1slqewvkncnb.2buuvi-qx7d7ty804.com
3uf0j9lfj1ahbk.4gwza2pemdjyvzclx2.com
v3.a.kwimgs.com
sla-cn.trustlook.com
gn1bah7jd12sa5og89a66y7y2lm.9ws71cbeiyrh4lrb92qq78y.com
2fhbj5ldnvry.zj0gbihwfqon69uxan7n-2bjydv.com
eccollect1.workec.com
report.sp.miui.com
2l9klvz4ar4e6twba1hyplwf4.q800yz991um5hq7ve4m0.com
3xiez9nxdxdrdd.i8kwb05o6mor4j3ivl1.com
www.packail.cc
dh2.kimg.cn
0-jom1dn6.6b-x6otavzeo971z4vzsux98z-4.com
37clsoig.t6auh7ws32paa7qowpfzey.com
0twuvdh1jzx6nu4eav7fb5venk.07lbojlo2nflxbkrq1gskoo0bv.com
m.newsdlawyer.com
ty67x7-m0-2fik.j0wt5zfl3rx7i9ydwajpnun4l0k.com
read-preprod.amazon.com
2slqcwi196i2fodc.ptq04tamwn6zv.com
azx957m18r12ojgmz-4g.0cf3oq61xwcelii.com
q38wuuic2szj2.hws8acaevmhes0lbyi073og.com
lrff4ihn-gtdsdpk.mhoow86552t50pe2f-776ts-.com
j2yg-27w5v838d9i8alj.yc6nkjbs2hl9v1mb9kj5evzl59e.com
t4ca-dxko.t4wppsqz6-izxkm4zjboa-dyo.com
qs8-y22up2neo4h6pzxff1spv.rp4u7omogxkmqojnf4g76.com
9a87jtasj.66n434-hs0l1yt9wl38739qk493.com
x3hwnnrfahyte6g9.hz9bd5qty6qebhgcxgk8ulx.com
zy21.xyz
doc.webpack-china.org
1sqvmey25y8nv3r.nv1vhy6qkm-.com
o8w2dqe3d1a9gswadbqkwfcc.1da-j41z73vjp6mman.com
pq.conf.f.360.cn
slw99ugop3rzk42gc9u77q.u8qk-zieprx0lypbvcvb.com
u0anbo4lmjm8.m9-yguclm.com
dh1.kimg.cn
pharmacy.integ.amazon.com
wqhw21cpv-c4crl0pms7o.u22w9f25vkc6qivy59.com
qtf43-983yguel.pmttyn44646jxqbeey97dy3.com
sandbox.runjs.cn
ip1973505380.funshion.com
t1gwpovpkhccl4-.j1x573n09uba7i8upgrkjaa63tk.com
install2.kugou.com
tk9gg72ajxz5ym0.1c6s5k7md1ya.com
x5vhufobo52l162hw.3rc2houk5-laewdv.com
huatuocode.weiyun.com
lxc0ess4ln1.vinncdhlrao00p1zc1od.com
laqrcq0x-yxxqs6vk.rb35ms8fi3yx.com
nourl.ubs.baidu.com
4mzxowjllbiy9l.1mni18etetb.com
4wdmbvt5br7x.ce2zftvs.com
yc3ilugk.cffu-1rl8fww9t5sb9n8l31sr.com
8jmnlw4ukb44zo1jgpaj7kryc1n.ur076jp9264w.com
2p0gwfus4ia497g4621p.5ait3qnnsx0clt9aw.com
www.huangmingxian.me
publish-ksyun.1iptv.com
du-testpay.hupu.com
nan.baidu.com
23i2wl7xedtvh7.jfhi3q25ci60j.com
i.getshell.cn
2g7wockgjcuht4ka0a.ngm8q7zqu9.com
q-in2ov4o6i8r1i.nhfuxu9j0-x38s5qutp4bu5ge.com
jkmx9yc-3.1txo574226fmqmmu3rsumf.com
9nyqa13n11jrwi4sq0j9nx57ktb.7rjgkeff3audkpadr-ogvvp3ttw.com
hcavkudt7ulzb.cp3k1nlersxc.com
bridge.alicdn.com
jms.crcloud.com
p65-acsegateway.icloud.com.cn
stream10.qqmusic.tian11.com
hxy021.didistatic.com
60000004.12306.cn
m9uzkjnvnpmmc-.jjjkypt2huzvpuodv.com
jq8rubre.yr9rrl4ci28-bw.com
growth.ai.srv
cinema-bdcdn-drcn.dbankcdn.com
cir-smart.baidu.com
v9a732n5n4tn26ibltasqg6zv.zhytk-w47bfbjp.com
qgn8ipxz0eakq5f9313ro1rg.7msmp1wa1jiehxbqcr35uczuo6.com
www.198.18.36.7
fmucy0ewi.h2ol65zqmrkpiu.com
it-532asiax3kdj2.97-08x54v.com
www.css88.com
agiujjlvyba28c54.un4g-o3zpi7g5jnewk95.com
mail.vmlim20.com.cn
images-cdn.shimo.im
l.wandoujia.com
4btmuupviqq7larj8f.9ijyuqvng3lkd842mkkn35k9tk.com
etax.shanghai.chinatax.gov.cnslp-web
li069v342pz1mqt9it3d52-dw.l6wihh0tq.com
code.byted.org
d41c9f69h2q4tknbekie69m.jgrsxo7pezj.com
cnauth.gnovocad.com
pv-mall2.sdc.cs.icbc
www.gudaovision.com
project.fdi.gov.cn
3qm2m-sqsk9zix3bwdfkv.j53ht1i0ytwe4wf0xwlepef.com
doseitarm.com
y9xh49pv4m1vhw2zmur-w0236.gcga2ivsa01-1em1fvtemd.com
www.sznet110.gov.cn
koipixs22fbzz2d1fx0pm6y7h1.givb5hixqeg9is2q5gx6hu23ps.com
uba.csair.com
test-app-admin.huazhucorp.com
ctr.1688.com.gds.alibabadns.com
img.444662.cn
60000016.12306.cn
wfd.netease.im
00fn64dlo-h844.7hc970yoxxnbthg9n.com
video.buycar5.cn
skadsdk.appsflyer-cn.com
youku.com-youku.net
www.goubanjia.com
rte.stage.evernote.com
f234hjpkb4zyakhhz7nu5vm.0-0fbblw8v79mw3ijto2i1ris.com
qsb.browser.miui.srv
money.wacai.com
image.fifa.qq.com
yh5vwr75tuqhga582324ds.9i9x1yhmpm.com
nrp5djd2yrm68.03lct7txgy6taufeqyo0jskj6u.com
fv17d5emq3.kg13k2vno.com
ss4stjq3cm9lmp.ohq2pz7wcddg-f2f.com
ive04-adapt.pddpic.com
static.xmt.cn
www.198.18.243.250
sketch.adobe.vip
od.qingting.fm
cdn.edgecast.steamstatic.com
static-blog.csdn.net
0.1
khz04n5yth.a9qdzcwmb-mofz3ko.com
zt5ao6we2-zwwilmrpp-32z2rs.5p5a251f.com
s.pre.geilicdn.com
w9qrjncx0xg2vgcd-.g75h519ai-g9gtwoebr09v8.com
6.gif
object.keys
y3molqskofgplbf1omuuyim13.f2zis0ry0chy7xdgjb7u6v.com
pcs9n178ys0gq5pbrsvqu.urp7g07xmdvfoiuo7pbrqb86.com
rj5a1uj3wii6oh2qjivuft7z8.mdxtwn7r66zl7dpx35ssr1azm03.com
jz-homer.daojia-inc.com
60000028.12306.cn
1vdfmj15uwolk5qrjer.xkb27s9uvjc.com
api.xiami.com
i.laohuyou.xyz
605eip14ft912x2pjefx.njdwst4sivi69-oi.com
outc22g6.i5dz8rnx-us3iyu.com
vpc.alsmzw.cn
r4-3rd-miner.baijincdn.com
3gq7z3ez4kd37sotresost.ymuqp6m9uft00f5.com
d2kgphy47xweckkacw.k8nsenv78cak2z9n.com
u9gzpdhsku0dk7b3fh57.rcm5fzkk-4ce55fpv0xdzpff.com
sentry.welian.com
emoji.qpic.cn.fastcdn.com
steam.wsds.cn
k13-3rd-miner.baijincdn.com
ucimg.ifeng.com
www.guanggoo.com
c-glrc-t2im8v04.ygj8n2wzn2gwz.com
3kj7377-x1p5wk.2zofmvr99zukindhqha4dq10.com
lifeislikeaboat.com
1gb3u51i.c9h5uz-d.com
nicelook-resource-public.naonaola.com
kifyyqtouwm0v.ja4kf7h-0k0jz1n.com
p33-acsegateway.icloud.com.cn
web-proxy.tencent.com
uc.gre
web-proxyhk.tencent.com
vyvalle.com
msftspeechmodelsprod.azureedge.net
p42-acsegateway.icloud.com.cn
4hh7oipsz33zf-.1tthov29.com
www.librec.net
music.yahoo.com.cn
gm-keji.tencent.com
p104-acsegateway.icloud.com.cn
p62-acsegateway.icloud.com.cn
p103-acsegateway.icloud.com.cn
60000015.12306.cn
nbki8vyph8wj.10r64vvxpvjdnh91l50wdfqq0f.com
sockets.leetcode.com
p72-acsegateway.icloud.com.cn
www.speakingmax.cn
p38-acsegateway.icloud.com.cn
p39-acsegateway.icloud.com.cn
spokzc9scsakzx41-.f9ztqon1.com
p101-acsegateway.icloud.com.cn
c2rg5eauc1.execute-api.eu-west-1.amazonaws.com
music.vip.cnh.yahoo.com
search.tom.com
ioav5-schedule.oa.tencent.com
0erh0etsn6lacekgnv76tvr0g.ozsg7jqoxp.com
p47-acsegateway.icloud.com.cn
music.sogua.com
p35-acsegateway.icloud.com.cn
p69-acsegateway.icloud.com.cn
htrujx5sh58yr1791gbf5.vcagb-cl6zyohbd.com
p46-acsegateway.icloud.com.cn
yfw.tzxgwl.cn
p57-acsegateway.icloud.com.cn
p34-acsegateway.icloud.com.cn
imageplus.baidu.com
p48-acsegateway.icloud.com.cn
trust.mindswap.org
varmisende.com
www.hd315.gov.cn
www.mo.amap.com
j6pcog80r2esava5putv72c.4so5wirraky-kv5m4k7-jr.com
www.f1ytjb.cn.w.kunlunsl.com
wox24xt-g70-gptmzjdr6-w4us2.1a7hgywcl0-kdgmm0u4cy7-80y.com
www.mtest.api.hunantv.com
p24-acsegateway.icloud.com.cn
cal5z0be.yit-544ampdhgazi00u2yp6gouw.com
d0j1o9.zhihu.com
www.webpackjs.com.api
www.m.amap.com
fernandomayol.com
people4jan.com
sentry.typora.io
p54-acsegateway.icloud.com.cn
asfaltwerk.com
res.ttfc.qq.com
p64-acsegateway.icloud.com.cn
apns.uu.cc
t2.hoopchina.com.cn
nextlytm.com
p23-acsegateway.icloud.com.cn
www3.kkzy-360.com
www.msite.api.mgtv.com
t3.hoopchina.com.cn
www.12333sh.gov.cn
feifei.cbi88.com
60000017.12306.cn
43k7omtwr.rupsxefjkz.com
dth4l9qv8bms46g3ugz.5wjq3vp5ckwe3hxc47il1d8tfj.com
mail.supermomkey.com.cn
rst9efebann3z-554t1x8-y.hg7nrnlk2.com
q4-g2qw5ihk6s-.l7ul2ocyko.com
p102-acsegateway.icloud.com.cn
www1.member-hsbc-group.com
www.speederss.best
dummysrv.dummyserver.com.nowhere
livechat.ctrip.com
xiaoduwifi.com
seato.io
hdl3bak.douyucdn.cn
h0o8r858ljq85t.phvybb58qfd8eeh.com
p41-acsegateway.icloud.com.cn
p44-acsegateway.icloud.com.cn
yccdn2.douyucdn.cn
zblx.hls.video.qq.com
apm.juneyaoair.com
q8tgomna6r.nh0yxzcjvwt.com
hdl1abak.douyucdn.cn
p49-acsegateway.icloud.com.cn
p61-acsegateway.icloud.com.cn
m.leetcode-cn.com
ducjzm1bf7r53l14d4rib19.5hl6lww30ppn3w1cgwrgjsle.com
statics.starsbaby.cn
p25-acsegateway.icloud.com.cn
y54y315fpz3ihw1otsnw5q2.5txp4h3-c7eytl.com
rsq69bya0kv-oi.k5rqxedcg1.com
passport.edianyun.cn
www.zcfy.cc
p58-acsegateway.icloud.com.cn
60000013.12306.cn
edge-safety-service.trafficmanager.net
images.microbadger.com
sbk.szjhwjcg.cn
oneclick.wpt.test.sankuai.com
google.vrthcobj.com
www.cardcmb.com
npc.unisk.cn
wwa.lanzous.com
p55-acsegateway.icloud.com.cn
allot-mpp.taobao.com
dl-s.tripcdn.cn
img1.kf.sogou.com
www.tableau.comzh-cn
downloadtpt.qqlive.qq.com
stat.appletuner.trendmicro.com
kyon-df.com
stat.kkp.kankan.com
pianku.xmp.kankan.com
dl-s.tripcdn.cn.fastcdn.com
conf.xmp.kankan.com
img.my.csdn.net
bk.downloadtpt.qqlive.qq.com
img-static.huaweicloud.com
p203-fmip.icloud.com
arm.conf.ptxl.gitv.tv
static.yanhuang.happyelements.cn
update2.cc.cdn.qq.com
auth-a100071.wifi.com
w.4nd.cn
p56-acsegateway.icloud.com.cn
upload.updrv.com~感觉这个功能可以做一个单独插件。更方便。~
想了想除了恶意请求,nxdomain域名应该很少。不会影响什么
打印请求客户端的IP还是有用的。。可以做点分析
swoiow
commented
2 years ago @yuanhaoliang 妳好,你这批域名都是返回 nxdomian 吗?我分析我的dns日志的时候,查到了上面的域名
ilanni2460
commented
2 years ago ~感觉这个功能可以做一个单独插件。更方便。~ 想了想除了恶意请求,nxdomain域名应该很少。不会影响什么
打印请求客户端的IP还是有用的。。可以做点分析
最新版本2.1.1,debug模式已经支持打印客户端IP地址了
yuanhaoliang
commented
2 years ago @yuanhaoliang 妳好,你这批域名都是返回 nxdomian 吗?我分析我的dns日志的时候,查到了上面的域名
nxdomian还有很多很多。。每天都能分析出一批,还发现好多app的请求域名是乱七八糟的拼写。。。
yuanhaoliang
commented
2 years ago ~感觉这个功能可以做一个单独插件。更方便。~ 想了想除了恶意请求,nxdomain域名应该很少。不会影响什么
打印请求客户端的IP还是有用的。。可以做点分析
最新版本2.1.1,debug模式已经支持打印客户端IP地址了
是的。。。但我希望每个字段都是结构化输出,现在客户端IP藏在了字段中的value的一部分没那么好分析。。
IrineSistiana
commented
2 years ago 如果想提取某些信息,其实我更建议有能力的话,写个mosdns插件。
不难,有模板。比如要记录 nxdomain,再写20行代码应该就行了。
swoiow
commented
2 years ago @yuanhaoliang 妳好,你这批域名都是返回 nxdomian 吗?我分析我的dns日志的时候,查到了上面的域名
nxdomian还有很多很多。。每天都能分析出一批,还发现好多app的请求域名是乱七八糟的拼写。。。
又一次查域名,匹配到你的list。「好多app的请求域名是乱七八糟的拼写」美團特別明顯,hhhh
有計劃,在github share這些data嗎?
希望添加的功能 1、增加JSON日志输出,会更方便字段获取。 2、打印来源IP
用途:分析每天解析的NXDOMAIN域名,加入到invalid域名表,如果请求到了,就立即返回127.0.0.1,免得天天都是一大堆NXDOMAIN的解析请求。加速响应。