Skip to main content

View DNS log entries for subdomains

Abstract

DNS log entries for subdomains provide aggregated statistics by subdomain name and requestor identity.

DNS log entries for subdomains provide aggregated statistics by subdomain name and requestor identity.

To view subdomain log entries, follow the steps below:

  2. Navigate to API & Logs > DNS Log.

  3. Set the date-range picker to the time period of interest: Last 24 hours, Last 7 days, Last 30 days, or a specific date interval. Click Apply.

    If there were any logs for the chosen time interval, the time chart will display the day/hour and the number of allowed, blocked, and failed DNS requests made as a stacked bar chart.

    If there were any logs for the chosen time interval, a table of log entries will be displayed below the chart.

  4. Each row of the table shows the Registered domain, the number of requests that were Allowed, the number of requests that were Blocked, the number that Failed, and the timestamp of the first DNS request for that domain name.

  5. Clicking on the corresponding column header allows you to sort the rows by the number of allowed, blocked, and failed requests.

  6. The data can also be filtered to find specific domain names and resolved IP addresses. Refer Filter DNS log entries.

  7. Click on the hyperlinked domain name to drill down for the subdomain requests that comprise the counts.

    The Resolved Subdomains view is displayed for that domain name. It comprises of three sections:

    1. The top section displays the selected domain name, the number of replies received, and the number of Users, Networks, and Hosts that made requests.

    2. The middle section contains the time chart, which displays the day/hour and the number of allowed, blocked, and failed DNS requests as a stacked bar chart. This section also contains the date-range picker, filter, and the email_export_to_csv_icon.png button.

    3. The bottom section has the data table.

  8. Optionally, use the date-range picker and the filter to narrow the data displayed in the table. Refer Filter DNS log entries.

  9. Each row of the table shows the Identity of the requestor, the type of DNS Resource Record received and when the TTL expires, the fully qualified domain name that was resolved, the number of requests, the timestamp of the first DNS request, the Resolved IP addresses, and the Details of the DNS response.

  10. The table can be sorted based on the number of requests by clicking on the Requests by Destinations

  11. Click on the eye_icon.png button to view the raw response of the DNS query.

In this section:
See also: