<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<p>Hi Remi</p>
<p>Thank you for your TIP. It works.<br>
</p>
<p>Antoine<br>
</p>
<div class="moz-cite-prefix">On 28/09/2021 11:27, Remi Gacogne via
dnsdist wrote:<br>
</div>
<blockquote type="cite"
cite="mid:642eaecd-c908-62cc-e689-fe748ed0044b@powerdns.com">Hi
Antoine,
<br>
<br>
On 9/27/21 14:00, antoine blin via dnsdist wrote:
<br>
<blockquote type="cite">I'm using the rule :
"addAction(MaxQPSIPRule(5), DropAction())" and I'm wondering if
it is possible to see, through the console API or other API, the
list of subnet in which rate limit rule is applied.
<br>
</blockquote>
<br>
Not directly, I'm afraid, but you could work something out by
setting a tag when that rule matches, then trigger a LogAction [1]
and finally a DropAction when the tag is set. Something like
(untested, but you should get the idea):
<br>
<br>
addAction(MaxQPSIPRule(5), SetTagAction("max-qpsip-rule",
"match"))
<br>
addAction(TagRule("max-qpsip-rule", "match"),
LogAction('/path/to/dnsdist.log'))
<br>
addAction(TagRule("max-qpsip-rule", "match"), DropAction())
<br>
<br>
Note that this works because LogAction does not stop the
processing of subsequent rules, as most actions do.
<br>
<br>
[1]: <a class="moz-txt-link-freetext" href="https://dnsdist.org/rules-actions.html#LogAction">https://dnsdist.org/rules-actions.html#LogAction</a>
<br>
<br>
Best regards
<br>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
dnsdist mailing list
<a class="moz-txt-link-abbreviated" href="mailto:dnsdist@mailman.powerdns.com">dnsdist@mailman.powerdns.com</a>
<a class="moz-txt-link-freetext" href="https://mailman.powerdns.com/mailman/listinfo/dnsdist">https://mailman.powerdns.com/mailman/listinfo/dnsdist</a>
</pre>
</blockquote>
</body>
</html>