New Dns Query Log Enhancments
not pursuing
Nachman Weiss
Please allow to filter based on The IP resolver Column
this would be very helpful for devices which are using a custom Network resolver for example 106
Please allow to filter based on The Policy Name
Please Allow us to choose more flexible Timing options for example last 5 Minutes or last 2 minutes
Please Add a Real Time Filter Option which would essentially allow us to view in real time the dns query logs as their coming in without needing us to refresh anything and it should actually work (Other dnsfilter like Products have this feature for over 7 years)
Minetta Gould
not pursuing
Appreciate all these suggestions! We’re planning improvements to make columns and search more flexible, but we don’t have plans to add a real-time filter at this time.
Thanks for sharing your ideas — they help us focus on the right areas as we continue improving visibility in query logs.
Jonathan Bullock
I feel like many folks would prefer resolution speed over reporting and it would be difficult to have both. But i agree it would be helpful to have granular view of this.
It sounds like you might be using a relay server. There is a debug flag in the config file that could be used to see real time status. If you try this you will soon relise once you have more than 4-5 users in a work environment having a real time monitor is not feasible due to the large volume of data being spit out it overloads most terminals.
I have used the relay server as a diagnostic tool since you could point just oke device to it but at that point its just as easy to load wireshark or use a wire tap to diagnose connections.