Configuring DNS Queries and Responses

After you set up your Data Connector virtual appliance, you must set up certain configuration so the Data Connector can gather relevant information from the Grid members, and then send the data to the Infoblox reporting server or Infoblox Platform destination.

When configuring the Grid to capture DNS queries and responses, you can choose to save the capture file locally on your appliance, or configure an SCP (Secure Copy) server and provide the credentials for the users configured on the Data Connector.

A capture file for logging DNS queries and responses is rolled over based on the configured time limit or when the file reaches 100 MB in size, whichever is sooner. The default time limit is 10 minutes. The capture file is automatically saved and exported to an SCP server based on your configuration. When you configure the appliance to save the capture file locally and later enable SCP, the appliance copies all the data starting with the oldest data. Infoblox recommends that you constantly monitor the SCP server to ensure that it has sufficient disk space. DNS queries and responses are stored on the appliance if the SCP server becomes unreachable. The maximum storage capacity varies based on the appliance model. After reaching the maximum limit, the appliance overwrites the old data with the new one. The amount of data captured depends on the DNS query rate and the domains that are included in or excluded from the capture. For information about how to exclude domains, see Viewing Registered Data Connector Details.

For more information on configuring DNS queries and responses , see the following:

• Configuring DNS Queries and Responses on NIOS
• Capturing DNS Queries
• Capturing DNS Responses