dnstop 統計 dns 查詢，像 tcpdump + top 一樣的工具，即時查看狀態

dnstop 等於是 tcpdump 與 top 組合起來的工具，可以即時查看 dns 狀態

基本用法

dnstop eth0

按鍵  ? 查看 help 用法

s - Sources list       # IP 來源排序數量
d - Destinations list  # IP 目的排序數量
t - Query types        # A 或 MX 等記錄排序
o - Opcodes
r - Rcodes
1 - 1st level Query Names        ! - with Sources    # .tw 等級的排序，而後面的 ! 符號
                                                     #   就是可以在 source list 狀態時
                                                     #   來搭配的話可以
                                                     #   同時出現 source 及 query name
2 - 2nd level Query Names        @ - with Sources    # ssorc.tw 等級的排序
3 - 3rd level Query Names        # - with Sources    # (依此類推，且要加上 -l 3 才能顯示 3rd 的)
4 - 4th level Query Names        $ - with Sources
5 - 5th level Query Names        % - with Sources
6 - 6th level Query Names        ^ - with Sources
7 - 7th level Query Names        & - with Sources
8 - 8th level Query Names        * - with Sources
9 - 9th level Query Names        ( - with Sources
^R - Reset counters
^X - Exit

2019-03-15 updated

編譯

yum install -y gcc-c++ make libpcap-devel ncurses-devel
git clone https://github.com/measurement-factory/dnstop.git
cd dnstop
make clean
./configure
make
make install