Menu
What's new
By:
Filters Better Search

Scribe Need help creating a filter for dnsmasq possible rebind attempts spamming the main log

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

skeal

skeal

Part of the Furniture
Helo people, I need help creating a filter for scribe. My logging problem is caused by adguard DNS. When I enabled adguard DNS it started logging rebind attack incidences. I created a dnsmasq filter to handle this but I keep getting failed syntax check when I restart the script. I started out by modifying the ethernet filter in examples. Below are my attemps at this task. Please be advised the .txt extension is not used when testing, this forum demands a file extension when uploading. Can anyone see the error in my attempts? Please help if you know how to correctly do this.
 

Attachments

  • dnsmasq.txt
    273 bytes · Views: 34
  • dnsmasqlogr.txt
    103 bytes · Views: 33
I believe you have an extra “ in your destination file name:

destination d_dnsmasq {
file("/opt/var/log/"dnsmasq.log");
Click to expand...

Should probably be:

destination d_dnsmasq {
file("/opt/var/log/dnsmasq.log");
Click to expand...
 
You must log in or register to reply here.

Similar threads

F
N66U + Huawei 658 v2 martian packets / dnsmasq[3803]: possible DNS-rebind attack detected: dns.msftncsi.com
Replies
9
Views
6K
FCM
F
Similar threads
Thread starter Title Forum Replies Date
L Need help with disconnecting wifi- Asuswrt-Merlin AddOns 1
Wobbo Need Help Setting Up Email Notifications for IP Changes on RT-AC86U Asuswrt-Merlin AddOns 10
thelonelycoder Diversion Need help with selecting new set of filter lists / block lists for Diversion 5.0 Asuswrt-Merlin AddOns 19
8 ASUS RT-AX58U (F/W Ver.:V3.0.0.4.384.8601) with Asuswrt-Merlin 3004.388.5 - Transmission: "Could not connect to the server. You may need to reload" Asuswrt-Merlin AddOns 2
B Diversion Diversion help Asuswrt-Merlin AddOns 14
U Unbound Help setting up Unbound. Asuswrt-Merlin AddOns 2
E DHCP questions & help Asuswrt-Merlin AddOns 10
L Diversion Diversion not blocking so many ads - help! Asuswrt-Merlin AddOns 26
F Skynet installation help Asuswrt-Merlin AddOns 9
n9nu Help w/ installing add-on's Asuswrt-Merlin AddOns 6

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Members online

Total: 970 (members: 28, guests: 942)
Top