Logging of DNS Requests and Responses without a DNS license
Published Jun 05, 2023
Version 1.0Was this article helpful?
Great, combined with this code, it's completely possible to build an httpdns DoH service using only irules and return the dns response result as a JSON
or Alternatively, create a fully 0.0.0.0 udp 53 (disable address translation and port translation, bind a gateway pool) Standard mode VS to audit DNS requests and responses in the direction
Advantages: It can improve the encoding ability of irules,such as binary, upvar and so on
Disadvantages: Loss of f5 CPU performance, and Github has an httpdns library written in go language. F5 only needs to do https forwarding. By utilizing this open source go library, F5's CPU overhead is greatly reduced