[119751] in North American Network Operators' Group
Re: DNS query analyzer
daemon@ATHENA.MIT.EDU (Nathan Ward)
Mon Nov 30 20:13:17 2009
From: Nathan Ward <nanog@daork.net>
In-Reply-To: <695277448C537A469D28FF68D0938C8372F23B5EDB@EXMBX04.exchhosting.com>
Date: Tue, 1 Dec 2009 14:12:13 +1300
To: Joseph Jackson <jjackson@aninetworks.net>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 1/12/2009, at 1:06 PM, Joseph Jackson wrote:
> Hey List!
>
> Anyone know of a tool that can take a pcap file from wireshark that
> was used to collect dns queries and then spit out statistics about
> the queries such as RTT and timeouts?
Not off the top of my head, but, you could use wireshark's Lua
extension system to write a plugin to do this for you right within
wireshark.
The wireshark/Lua stuff is quite powerful (though not super super
fast), it's a really useful tool to have on hand.
--
Nathan Ward
