Uploaded image for project: 'OpenShift Request For Enhancement'
  1. OpenShift Request For Enhancement
  2. RFE-3713

RFE - OpenShift CoreDNS integration with DNSTAP

XMLWordPrintable

    • False
    • None
    • False
    • Not Selected

      1. What is the nature and description of the request?

      • Security Improvement - I want to be able to track malicious DNS resolve request to the specific pod that made them and we want to forward all requests using DNSTAP to our security system ( ThreatNet ).
              
        2. Why does the customer need this? (List the business requirements here)  
      • To improve security on our platform.
              
        3. How would the customer like to achieve this? (List the functional requirements here)  
      • Make DNSTAP available on the CoreDNS pods so we can forward all requests to our security system.
              
        4. For each functional requirement listed, specify how Red Hat and the customer can test to confirm the requirement is successfully implemented.  
      • See all DNS requests from pods in our security system with pod IP, Pod Name and Namespace.
            
        5. Does the customer have any specific timeline dependencies and which release would they like to target (i.e. RHEL5, RHEL6)?  
      • OCP 4.10, 4.12

      6. List any affected packages or components.  

      • CoreDNS
              
        7. Would the customer be able to assist in testing this functionality if implemented?
      • Yes

      https://coredns.io/plugins/dnstap/

              mcurry@redhat.com Marc Curry
              rhn-support-vmedina1 Victor Medina
              Deepthi Dharwar, Marc Curry
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated:
                Resolved: