search

ntop / ntopng

Web-based Traffic and Security Network Traffic Monitoring
http://www.ntop.org
GNU General Public License v3.0
6.29k stars 656 forks source link

Support of DNSSEC RRs #3137

Open webernetz opened 4 years ago

webernetz commented 4 years ago

Maybe you could add the RRs that are relevant for DNSSEC, that is: RRSIG, NSEC, NSEC3, NSEC3PARAM, DNSKEY, DS.

Ref: https://www.iana.org/assignments/dns-parameters/dns-parameters.xhtml#dns-parameters-4 https://tools.ietf.org/html/rfc4034 https://tools.ietf.org/html/rfc5155

simonemainardi commented 4 years ago

do you have a pcap with those guys that you can attach?

webernetz commented 4 years ago

Sure. Will send it to you by mail. (Don't want to make it publicly avaiable.)

webernetz commented 4 years ago

Currently, this is what is looks like on an authoritative DNSSEC-capable server: about 1/3 is "Other" because of the RRSIGs that are queried for any DNS request from a DNSSEC validating recurser.

grafik