Building Geo Map using Queries
Vadim Pavlov
pvm_job at mail.ru
Sun Jun 10 05:30:33 UTC 2018
Nope. YMMV depending on your requirements.
I did it a while ago but I've just parsed the query logs with my script and stored logs in MySQL + used google maps to show it ( http://dnsstat.ipvm.biz/ <http://dnsstat.ipvm.biz/> and a funny video: https://youtu.be/mI1p0VjalT ).
I needed more details so I've used "whois" + RIPE DB.
AFAIK Splunk (even with free tier) provides such ability. You may use some other providers like DomainTools as well.
Vadim
> On 10 Jun 2018, at 08:15, Blason R <blason16 at gmail.com> wrote:
>
> Thanks!
>
> Any particular use case or configuration you would like to suggest?
>
>
> On Sun, Jun 10, 2018 at 10:25 AM Vadim Pavlov <pvm_job at mail.ru <mailto:pvm_job at mail.ru>> wrote:
> Hi Blason,
>
> You can use MaxMind GeoIP DB and enrich logs with data you need.
>
> Vadim
> > On 09 Jun 2018, at 17:33, Blason R <blason16 at gmail.com <mailto:blason16 at gmail.com>> wrote:
> >
> > Hi There,
> >
> > I have DNS RPZ server runnnig and have configured logstatsh on the same to parse the DNS RPZ logs.
> >
> > My requirement is I need to build Geo Map basis on the DNS responses; Any idea how can that be achieved? Or need to know the requests made from which country and any other idea community can suggest?
> > _______________________________________________
> > Please visit https://lists.isc.org/mailman/listinfo/bind-users <https://lists.isc.org/mailman/listinfo/bind-users> to unsubscribe from this list
> >
> > bind-users mailing list
> > bind-users at lists.isc.org <mailto:bind-users at lists.isc.org>
> > https://lists.isc.org/mailman/listinfo/bind-users <https://lists.isc.org/mailman/listinfo/bind-users>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20180610/673f4e75/attachment.html>
More information about the bind-users
mailing list