See this: https://kb.isc.org/article/AA-00434/0/What-do-EDC-and-other-letters-I-see-in... I've written a quick and dirty logging mechanism which stores the bind logs in a mysql database in various fields. It works well for the great majority of queries...happy to share the bash script if you're interested. On Thu, May 9, 2013 at 7:52 PM, shawn wilson <ag4ve.us@gmail.com> wrote:
In this log line, what is -EDC? I've also noticed +, -, -E, and -ED but I have no Idea what they are (called/represent).
08-May-2013 08:04:49.751 client 1.2.3.4#48747 (ns2.example.com): query: ns2.example.com IN AAAA -EDC (1.2.3.4)
Also, I'm writing a parser and we're only loging 'queries' but if someone has examples / schemas for the other categories, I'd like to integrate that. http://www.zytrax.com/books/dns/ch7/logging.html
-- 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0