cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

MDI loggs only few DNS queries

NinjaKitty
Brass Contributor

‎Apr 29 2022 03:43 AM - edited ‎Apr 29 2022 03:54 AM

‎Apr 29 2022 03:43 AM - edited ‎Apr 29 2022 03:54 AM

MDI loggs only few DNS queries

hi,

we depoyed MDI on our four DCs. Everything seems to work. Events are comming in, alerts are beeing generated. Yesterday I digged into DNS queries and it seems, as if only a few querys are logged by MDI. My expectation is, that every DNS query should be visible in MDI.

 

cheers kitty

752 Views
0 Likes
1 Reply
Reply
1 Reply
NinjaKitty

‎Mar 06 2023 09:24 AM

‎Mar 06 2023 09:24 AM

Re: MDI loggs only few DNS queries

I tested all four DCs with nslookup requests. They are not visible in the IdentityQueryEvents table. What am I missing?
0 Likes
Reply