Loading...

XML

Word

Printable

Type: Feature Request
Resolution: Done
Priority: Major
Fix Version/s: openshift-4.18
Affects Version/s: None
Component/s: Network Edge
Labels:
- sb_tracked

Blocked:
False
Blocked Reason:
None
Ready:
False
Color Status:
Not Selected
Intelligence Requested:
Market:
PX Impact Score:
PX Priority Data:
PX Review Complete:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

1. What is the nature and description of the request?

Security Improvement - I want to be able to track malicious DNS resolve request to the specific pod that made them and we want to forward all requests using DNSTAP to our security system ( ThreatNet ).

2. Why does the customer need this? (List the business requirements here)

To improve security on our platform.

3. How would the customer like to achieve this? (List the functional requirements here)

Make DNSTAP available on the CoreDNS pods so we can forward all requests to our security system.

4. For each functional requirement listed, specify how Red Hat and the customer can test to confirm the requirement is successfully implemented.

See all DNS requests from pods in our security system with pod IP, Pod Name and Namespace.

5. Does the customer have any specific timeline dependencies and which release would they like to target (i.e. RHEL5, RHEL6)?

OCP 4.10, 4.12

6. List any affected packages or components.

CoreDNS

7. Would the customer be able to assist in testing this functionality if implemented?

Yes

https://coredns.io/plugins/dnstap/

Assignee:: Marc Curry

Reporter:: Victor Medina

Need Info From:: Deepthi Dharwar, Marc Curry

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2023/02/27 6:42 AM

Updated:: 2024/03/21 3:45 PM

Resolved:: 2023/08/07 5:25 AM