[119783] in North American Network Operators' Group
Re: DNS query analyzer
daemon@ATHENA.MIT.EDU (Aaron Glenn)
Tue Dec 1 19:35:00 2009
In-Reply-To: <alpine.LSU.2.00.0912011557260.3461@hermes-1.csi.cam.ac.uk>
Date: Wed, 2 Dec 2009 00:34:08 +0000
From: Aaron Glenn <aaron.glenn@gmail.com>
To: Joseph Jackson <jjackson@aninetworks.net>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Tue, Dec 1, 2009 at 3:58 PM, Tony Finch <dot@dotat.at> wrote:
> On Mon, 30 Nov 2009, Joseph Jackson wrote:
>>
>> Anyone know of a tool that can take a pcap file from wireshark that was
>> used to collect dns queries and then spit out statistics about the
>> queries such as RTT and timeouts?
>
> I don't know if it'll do exactly what you want, but have a look at
> https://www.dns-oarc.net/tools/dnscap
dnscap paired with dpkt can quickly and elegantly accomplish what you
desire; if you know python (:
