[dnsdist] print the ip address that match a Packet Actions

Remi Gacogne remi.gacogne at powerdns.com
Tue Sep 28 09:27:55 UTC 2021

Hi Antoine,

On 9/27/21 14:00, antoine blin via dnsdist wrote:
> I'm using the rule : "addAction(MaxQPSIPRule(5), DropAction())" and I'm 
> wondering if it is possible to see, through the console API or other 
> API, the list of subnet in which rate limit rule is applied.

Not directly, I'm afraid, but you could work something out by setting a 
tag when that rule matches, then trigger a LogAction [1] and finally a 
DropAction when the tag is set. Something like (untested, but you should 
get the idea):

addAction(MaxQPSIPRule(5), SetTagAction("max-qpsip-rule", "match"))
addAction(TagRule("max-qpsip-rule", "match"), 
addAction(TagRule("max-qpsip-rule", "match"), DropAction())

Note that this works because LogAction does not stop the processing of 
subsequent rules, as most actions do.

[1]: https://dnsdist.org/rules-actions.html#LogAction

Best regards
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.powerdns.com/pipermail/dnsdist/attachments/20210928/9142ea55/attachment.sig>

More information about the dnsdist mailing list