Raw log file format
Copyright © 1999-2008 JH Software ApS
Raw log file format |
Simple DNS Plus v. 5.1 Copyright © 1999-2008 JH Software ApS |
|
Simple DNS Plus raw log files (.sdraw) contain an entry for each received DNS request as follows:
Bytes |
Description |
3 |
Number of seconds since midnight * |
2 |
DNS request packet bytes 3 and 4 (header flags) |
2 |
Query type * |
2 |
Query class * |
1 |
Length of query name less 1 |
variable |
Query domain name (DNS packet format) |
1 |
Length of request source IP address (IPv4=4, IPv6=16) |
variable |
Request source IP address |
* bytes represent integer value in network byte order (most significant byte first / big-endian).
The Tools directory contains a command line tool to extract and filter raw log data and also a .NET programming library for accessing the raw log data.
Raw request logging is enabled in the Options dialog / Logging / Log Files section.