Rear View RPZ: PTR records from local knowledge
Grant Taylor
gtaylor at tnetconsulting.net
Thu Dec 2 19:00:06 UTC 2021
On 12/2/21 9:59 AM, Fred Morris wrote:
> Hello, Rear View RPZ (https://github.com/m3047/rear_view_rpz) is now
> generally available: turn your local BIND resolver into a network
> investigation enabler with locally generated PTR records.
Would you please elaborate on what Rear View RPZ does?
It seems as if it synthetically fabricates PTR records (which are served
via RPZ) with some additional information for subsequent use by
investigators.
If that is correct, please provide an example of the original PTR and
the synthetic augmented PTR.
Aside: Creative use and combination of DNSTap and RPZ. <ASCII thumbs up>
--
Grant. . . .
unix || die
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4017 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20211202/42cecf43/attachment.bin>
More information about the bind-users
mailing list