On his name

Using dnstap for triggering action from DNS name resolution.

It should work with any DNS server with dnstap output, tested with Coredns.

Test it

With a setcap, coredns doesn't have to be run as root, but on-his-name uses iptables and needs to be run as root.

Launch coredns in the folder with the Corefile.

Launch the service :

LISTEN=./tap.sock SOCKET_UID=1000 ./bin/on-his-name *.example.com

You can dig :

dig @localhost -p 1053 blog.example.com

Name		Name	Last commit message	Last commit date
Latest commit History 37 Commits
dns		dns
firewall		firewall
output		output
.gitignore		.gitignore
Corefile		Corefile
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
go.mod		go.mod
go.sum		go.sum
main.go		main.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

dns

dns

firewall

firewall

output

output

.gitignore

.gitignore

Corefile

Corefile

LICENSE

LICENSE

Makefile

Makefile

README.md

README.md

go.mod

go.mod

go.sum

go.sum

main.go

main.go

Repository files navigation

On his name

Test it

About

Releases

Packages

Contributors 2

Languages

License

factorysh/on-his-name

Folders and files

Latest commit

History

Repository files navigation

On his name

Test it

About

Resources

License

Stars

Watchers

Forks

Languages