Examples with DnsPacket net.ripe.hadoop.pcap.packet.DnsPacket used on opensource projects

Search in sources :

Example 1 with DnsPacket

use of net.ripe.hadoop.pcap.packet.DnsPacket in project hadoop-pcap by RIPE-NCC.

the class DnsPcapReader method processPacketPayload.

@Override
protected void processPacketPayload(Packet packet, byte[] payload) {
    String protocol = (String) packet.get(Packet.PROTOCOL);
    if (!PcapReader.PROTOCOL_UDP.equals(protocol) && !PcapReader.PROTOCOL_TCP.equals(protocol))
        return;
    DnsPacket dnsPacket = (DnsPacket) packet;
    if (DNS_PORT == (Integer) packet.get(Packet.SRC_PORT) || DNS_PORT == (Integer) packet.get(Packet.DST_PORT)) {
        if (PROTOCOL_TCP.equals(protocol) && // TODO Support DNS responses with multiple messages (as used for XFRs)
        payload.length > 2)
            // First two bytes denote the size of the DNS message, ignore them
            payload = Arrays.copyOfRange(payload, 2, payload.length);
        try {
            Message msg = new Message(payload);
            Header header = msg.getHeader();
            dnsPacket.put(DnsPacket.QUERYID, header.getID());
            dnsPacket.put(DnsPacket.FLAGS, header.printFlags());
            dnsPacket.put(DnsPacket.QR, header.getFlag(Flags.QR));
            dnsPacket.put(DnsPacket.OPCODE, Opcode.string(header.getOpcode()));
            dnsPacket.put(DnsPacket.RCODE, Rcode.string(header.getRcode()));
            dnsPacket.put(DnsPacket.QUESTION, convertRecordToString(msg.getQuestion()));
            dnsPacket.put(DnsPacket.QNAME, convertRecordOwnerToString(msg.getQuestion()));
            dnsPacket.put(DnsPacket.QTYPE, convertRecordTypeToInt(msg.getQuestion()));
            dnsPacket.put(DnsPacket.ANSWER, convertRecordsToStrings(msg.getSectionArray(Section.ANSWER)));
            dnsPacket.put(DnsPacket.AUTHORITY, convertRecordsToStrings(msg.getSectionArray(Section.AUTHORITY)));
            dnsPacket.put(DnsPacket.ADDITIONAL, convertRecordsToStrings(msg.getSectionArray(Section.ADDITIONAL)));
        } catch (Exception e) {
        // If we cannot decode a DNS packet we ignore it
        }
    }
}
Also used : Message(org.xbill.DNS.Message) Header(org.xbill.DNS.Header) DnsPacket(net.ripe.hadoop.pcap.packet.DnsPacket) IOException(java.io.IOException)

Aggregations

IOException (java.io.IOException)1 DnsPacket (net.ripe.hadoop.pcap.packet.DnsPacket)1 Header (org.xbill.DNS.Header)1 Message (org.xbill.DNS.Message)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial