-
Notifications
You must be signed in to change notification settings - Fork 1
/
netiscope.ini
108 lines (87 loc) · 3.06 KB
/
netiscope.ini
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
# Netiscope configuration
#####################################
# general configuration goes here
[main]
# how much to log: detail | info | warning | error
#loglevel = detail
# enable colored output
#color
# ignore address families
#skip_ipv4
#skip_ipv6
# force address families
#force_ipv4
#force_ipv6
# how many ping packets to use
#ping_packets = 3
#####################################
# which checks to execute
[checks]
network_interfaces
dns_local_resolvers
dns_open_resolvers # covers 1111, 8888, 9999 but these can be used separately too
#1111
#8888
#9999
dns_root_servers
port_filtering
doh_providers
#####################################
[dns]
# what check to do against DNS servers/resolvers
ping
query
# name (multiple) is/are the FQDNs to use for DNS resolver checks
name = "google.com"
name = "facebook.com"
name = "twitter.com"
name = "cloudflare.com"
name = "wikipedia.org"
# tld (multiple) is/are the TLDs (top level domains) to use for DNS root server checks
tld = "com"
tld = "org"
tld = "io"
tld = "tw"
# ask this many random TLDs from DNS root servers
#random = 3
#####################################
[doh]
# DNS over HTTPS providers: af,format,base url
provider = "4,json,https://1.1.1.1/dns-query" # Cloudflare
provider = "4,rfc8484,https://1.1.1.1/dns-query" # Cloudflare
provider = "4,json,https://dns.cloudflare.com/dns-query"
provider = "6,json,https://dns.cloudflare.com/dns-query"
provider = "4,rfc8484,https://dns.cloudflare.com/dns-query"
provider = "6,rfc8484,https://dns.cloudflare.com/dns-query"
provider = "4,json,https://dns.google/resolve"
provider = "6,json,https://dns.google/resolve"
provider = "4,rfc8484,https://dns.google/dns-query"
provider = "6,rfc8484,https://dns.google/dns-query"
provider = "4,json,https://dns.nextdns.io/dns-query"
provider = "6,json,https://dns.nextdns.io/dns-query"
provider = "4,rfc8484,https://dns.nextdns.io/dns-query"
provider = "6,rfc8484,https://dns.nextdns.io/dns-query"
provider = "4,json,https://dns.quad9.net:5053/dns-query"
provider = "6,json,https://dns.quad9.net:5053/dns-query"
provider = "4,rfc8484,https://dns.quad9.net/dns-query"
provider = "6,rfc8484,https://dns.quad9.net/dns-query"
#####################################
[port_filtering]
# which port+target+protocol to test
port_check = "ssh.test.netiscope.net,22,TCP"
port_check = "telnet.test.netiscope.net,23,TCP"
port_check = "smtp.test.netiscope.net,25,TCP"
port_check = "dns.test.netiscope.net,53,TCP"
port_check = "dns.test.netiscope.net,53,UDP"
port_check = "http.test.netiscope.net,80,TCP"
port_check = "pop3.test.netiscope.net,110,TCP"
port_check = "ntp.test.netiscope.net,123,UDP"
port_check = "imap.test.netiscope.net,143,TCP"
port_check = "https.test.netiscope.net,443,TCP"
port_check = "pop3s.test.netiscope.net,995,TCP"
# netiscope_response controls if the response should be sanity checked or not
# if it is not enabled then only the connection establishment is tried
# if it is enabled then the response is also checked, expected to be "Netiscope\n"
netiscope_response
# network timout for connections and reads while doing port filtering cecks
#timeout = 3