Bind DNS with dashboard for visualizing data and alerting

I need a DNS logging system with a nice looking user interface for viewing DNS queries made to Bind and for monitoring the queries. Perhaps Elasticsearch? I want a dashboard that allows me to assign friendly names to source IP's and to be able to view all queries with date, time, scr IP, and the query itself example: [login to view URL] I need to devise a way to categorize queries that are made to domains that are in blocklists. I don't know if Bind9 has the ability to ascertain that a query matched a particular blocklist, or if a separate program can get the desired information from following the log file and comparing thehostname to those that are in the blocklists. On the dashboard there should be several boxes each with a box with a counter that shows the number of blocked queries to each blocked category. A example image I found: [login to view URL]

----Blocked Queries-----

| adult | Ads | Malicious |

56 596 247

The ability to select a blocked category and see all queries in a user specified date range.

The ability to auto generate a daily,weekly and monthly PDF report that will list the top queries in descending order with date,time,src IP,Query

The ability to send an email when a user specified number of queries are made to a defined category. Example: 20 queries to adult category triggers alert.

And to have this not be a resource hog ;)

To clarify I use blocklists with my Bind9 server and block certain categories. example:
include "/etc/bind/ad_blacklist";
include "/etc/bind/porn_blacklist";
include "/etc/bind/malicious_blacklist";

So the goal is to not only display normal DNS queries on a dashboard but to also visualize the blocked queries that were blocked by the blocklists.

DNS Elasticsearch Linux MySQL PHP

Numer ID Projektu: #7075457

O projekcie