DNS Query Input 🔗
Description 🔗
The Splunk Distribution of OpenTelemetry Collector provides this integration as the telegraf/dns monitor type for the Smart Agent Receiver. This is an embedded form of the Telegraf DNS Query plugin.
Installation 🔗
This monitor is available in the Smart Agent Receiver, which is part of the Splunk Distribution of OpenTelemetry Collector.
To install this integration:
Deploy the Splunk Distribution of OpenTelemetry Collector to your host or container platform.
Configure the monitor, as described in the next section.
Configuration 🔗
This Splunk Distribution of OpenTelemetry Collector allows embedding a Smart Agent monitor configuration in an associated Smart Agent Receiver instance.
Note: Providing a DNS Query Input monitor entry in your Collector or Smart Agent (deprecated) configuration is required for its use. Use the appropriate form for your agent type.
Splunk Distribution of OpenTelemetry Collector 🔗
To activate this monitor in the Splunk Distribution of OpenTelemetry Collector, add the following to your agent configuration:
receivers:
smartagent/dns:
type: telegraf/dns
... # Additional config
See configuration examples for specific use cases that show how the Splunk Distribution of OpenTelemetry Collector can integrate and complement existing environments.
Note: Include monitors with event-sending functionality as members of a logs pipeline that utilizes an exporter that makes the event submission requests. Use a Resource Detection processor to ensure that host identity and other useful information is made available as event dimensions.
Smart Agent 🔗
To activate this monitor in the Smart Agent, add the following to your agent configuration:
monitors: # All monitor config goes under this key
- type: telegraf/dns
... # Additional config
See Smart Agent example configuration for an autogenerated example of a YAML configuration file, with default values where applicable.
Configuration settings 🔗
The following table shows the configuration options for this monitor:
Option |
Required |
Type |
Description |
|---|---|---|---|
|
no |
|
Domains or subdomains to query. If this is not provided, it is |
|
no |
|
Network is the network protocol name. (default: |
|
no |
|
DNS server port. (default: |
|
yes |
|
Servers to query. |
|
no |
|
Query record type (A, AAAA, CNAME, MX, NS, PTR, TXT, SOA, SPF, SRV). (default: |
|
no |
|
Query timeout. Use a duration string that is accepted by https://golang.org/pkg/time/#ParseDuration. (default: |
Metrics 🔗
The following metrics are available for this integration:
Get help 🔗
If you are not able to see your data in Splunk Observability Cloud, try these tips:
Submit a case in the Splunk Support Portal
Available to Splunk Observability Cloud customers
-
Available to Splunk Observability Cloud customers
Ask a question and get answers through community support at Splunk Answers
Available to Splunk Observability Cloud customers and free trial users
Join the Splunk #observability user group Slack channel to communicate with customers, partners, and Splunk employees worldwide
Available to Splunk Observability Cloud customers and free trial users
To learn how to join, see Get Started with Splunk Community - Chat groups
To learn about even more support options, see Splunk Customer Success.