Denied DNS Requests
From James Dooley's Wiki
Contents
Overview
Find denied queries against DNS, good for finding sites that are no longer hosted or do not have valid DNS records.
Get top denied domains
cat /var/log/messages | grep named | grep denied | cut -d "'" -f2 | cut -d "/" -f1 | sort | uniq -ci | sort -nr | head
Get all denied domains
cat /var/log/messages | grep named | grep denied | cut -d "'" -f2 | cut -d "/" -f1 | sort | uniq -ci | sort -nr > /root/denied_dns.txt
Create dummy zone for a single domain
/scripts/add_dns --domain $domain --ip 127.0.0.1
Create dummy zone for the top 10 domains
This will create a zone file using cPanels add_dns script and point it to 127.0.0.1 for the top 10 domains.
cp -r /var/named /var/named.bak
for domain in $(head /root/denied_dns.txt | awk '{print $2}' | sed 's/www\.//'); do echo "Adding $domain"; /scripts/add_dns --domain $domain --ip 127.0.0.1; done
