惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

T
The Exploit Database - CXSecurity.com
A
Arctic Wolf
K
Kaspersky official blog
T
Threat Research - Cisco Blogs
PCI Perspectives
PCI Perspectives
www.infosecurity-magazine.com
www.infosecurity-magazine.com
P
Privacy International News Feed
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
U
Unit 42
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
Simon Willison's Weblog
Simon Willison's Weblog
P
Privacy & Cybersecurity Law Blog
O
OpenAI News
量子位
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
C
Cisco Blogs
AWS News Blog
AWS News Blog
Vercel News
Vercel News
Microsoft Security Blog
Microsoft Security Blog
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
美团技术团队
T
Threatpost
S
Schneier on Security
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
C
Cyber Attacks, Cyber Crime and Cyber Security
Last Week in AI
Last Week in AI
C
CERT Recently Published Vulnerability Notes
Blog — PlanetScale
Blog — PlanetScale
C
Cybersecurity and Infrastructure Security Agency CISA
F
Full Disclosure
博客园_首页
N
Netflix TechBlog - Medium
Security Latest
Security Latest
有赞技术团队
有赞技术团队
Google DeepMind News
Google DeepMind News
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
The Register - Security
The Register - Security
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Recent Announcements
Recent Announcements
博客园 - Franky
P
Palo Alto Networks Blog
Project Zero
Project Zero
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
H
Help Net Security
Hacker News: Ask HN
Hacker News: Ask HN
Cisco Talos Blog
Cisco Talos Blog
H
Heimdal Security Blog
The Hacker News
The Hacker News
博客园 - 【当耐特】
GbyAI
GbyAI

prometheus on CoreDNS: DNS and Service Discovery

暂无文章

prometheus
2025-06-13 · via prometheus on CoreDNS: DNS and Service Discovery

Description

With prometheus you export metrics from CoreDNS and any plugin that has them. The default location for the metrics is localhost:9153. The metrics path is fixed to /metrics.

In addition to the default Go metrics exported by the Prometheus Go client, the following metrics are exported:

  • coredns_build_info{version, revision, goversion} - info about CoreDNS itself.
  • coredns_panics_total{} - total number of panics.
  • coredns_dns_requests_total{server, zone, view, proto, family, type} - total query count.
  • coredns_dns_request_duration_seconds{server, zone, view, type} - duration to process each query.
  • coredns_dns_request_size_bytes{server, zone, view, proto} - size of the request in bytes. Uses the original size before any plugin rewrites.
  • coredns_dns_do_requests_total{server, view, zone} - queries that have the DO bit set
  • coredns_dns_response_size_bytes{server, zone, view, proto} - response size in bytes.
  • coredns_dns_responses_total{server, zone, view, rcode, plugin} - response per zone, rcode and plugin.
  • coredns_dns_https_responses_total{server, status} - responses per server and http status code.
  • coredns_dns_quic_responses_total{server, status} - responses per server and QUIC application code.
  • coredns_plugin_enabled{server, zone, view, name} - indicates whether a plugin is enabled on per server, zone and view basis.

Almost each counter has a label zone which is the zonename used for the request/response.

Extra labels used are:

  • server is identifying the server responsible for the request. This is a string formatted as the server’s listening address: <scheme>://[<bind>]:<port>. I.e. for a “normal” DNS server this is dns://:53. If you are using the bind plugin an IP address is included, e.g.: dns://127.0.0.53:53.
  • proto which holds the transport of the response (“udp” or “tcp”)
  • The address family (family) of the transport (1 = IP (IP version 4), 2 = IP6 (IP version 6)).
  • type which holds the query type. It holds most common types (A, AAAA, MX, SOA, CNAME, PTR, TXT, NS, SRV, DS, DNSKEY, RRSIG, NSEC, NSEC3, HTTPS, IXFR, AXFR and ANY) and “other” which lumps together all other types.
  • status which holds the https status code. Possible values are:
    • 200 - request is processed,
    • 404 - request has been rejected on validation,
    • 400 - request to dns message conversion failed,
    • 500 - processing ended up with no response.
  • the plugin label holds the name of the plugin that made the write to the client. If the server did the write (on error for instance), the value is empty.

If monitoring is enabled, queries that do not enter the plugin chain are exported under the fake name “dropped” (without a closing dot - this is never a valid domain name).

Other plugins may export additional stats when the prometheus plugin is enabled. Those stats are documented in each plugin’s README.

This plugin can only be used once per Server Block.

Syntax

prometheus [ADDRESS]

For each zone that you want to see metrics for.

It optionally takes a bind address to which the metrics are exported; the default listens on localhost:9153. The metrics path is fixed to /metrics.

Examples

Use an alternative listening address:

. {
    prometheus localhost:9253
}

Or via an environment variable (this is supported throughout the Corefile): export PORT=9253, and then:

. {
    prometheus localhost:{$PORT}
}

Bugs

When reloading, the Prometheus handler is stopped before the new server instance is started. If that new server fails to start, then the initial server instance is still available and DNS queries still served, but Prometheus handler stays down. Prometheus will not reply HTTP request until a successful reload or a complete restart of CoreDNS. Only the plugins that register as Handler are visible in coredns_plugin_enabled{server, zone, name}. As of today the plugins reload and bind will not be reported.