dnsviz-grok - assess diagnostic DNS queries
] [ domain_name...
Process the results of diagnostic DNS queries previously performed, e.g., using
, to assess the health of the associated DNS deployments
for one or more domain names specified. The results of this processing are
serialized into JSON format for further programmatic diagnostics or alerts.
The source of the diagnostic query input is either a file specified with
or standard input.
Domain names to be processed may be passed either as command-line arguments, in
a file (using the -f
option), or simply implied using the diagnostic
query input. The latter is the preferred methodology (and the simplest) and is
useful, except in cases where the input contains diagnostic queries for
multiple domain names, only a subset of which are to be processed.
is not used and no domain names are supplied on the command line,
then the domain names to be processed are extracted from the diagnostic query
input. If the -f
option is used, then names may not be specified on the
The domain names passed as input are fully-qualified domain names, such as
example.com, www.example.com, _443._tcp.example.com, 18.104.22.168.in-addr.arpa,
or 8.b.d.0.1.0.0.2.ip6.arpa. Because it is implied that specified domain names
are fully qualified, no trailing dot is necessary.
- filename Read names from a file (one name per line),
instead of from command line.
If this option is used, then names may not be specified on the command
- filename Read diagnostic query input from the
specified file, instead of from standard input.
- -t filename
- Specify a file that contains trusted keys for processing
diagnostic queries. The default is to not use any trusted keys.
The format of this file is master zone file format and should contain DNSKEY
records that correspond to one more trusted keys for one or more DNS
This option may be used multiple times on the command line.
- -o filename
- Write the output to the specified file instead of to
standard output, which is the default.
- Make JSON output minimal instead of "pretty"
(i.e., remove indentation and newlines).
- -l level
- Display only information at the specified log priority or
higher. Valid values (in increasing order of priority) are:
"error", "warning", "info", and
"debug". The default is "debug".
- Display the usage and exit.
The exit codes are:
- Program terminated normally.
- Incorrect usage.
- Required package dependencies were not found.
- There was an error processing the input or saving the
dnsviz(1), dnsviz-probe(1), dnsviz-graph(1),
- Program execution was interrupted, or an unknown error