Cisco Umbrella Remote IP/Device ID support #1096
Conversation
https://docs.umbrella.com/umbrella-api/docs/identifying-dns-traffic2 Signed-off-by: Brian Hartvigsen <brian.andrew@brianandjenny.com>
Mo Money, Mo Problems -- The Notorious B.I.G. Signed-off-by: Brian Hartvigsen <brian.andrew@brianandjenny.com>
So the FCC won't let me be or let me be me -- Eminem Signed-off-by: Brian Hartvigsen <brian.andrew@brianandjenny.com>
Signed-off-by: Brian Hartvigsen <brian.andrew@brianandjenny.com>
tresni
force-pushed
the
umbrella_remote_ip
branch
from
6c5ad4c
to
51c722e
Compare
|
Thank you for your suggestion. Unfortunately, we cannot accept it right now as we have a policy to not accept changes to the To show how much we appreciate your submission, we can help you converting your suggested change into a patch that can be directly submitted as attachment to dnsmasq-discuss@lists.thekelleys.org.uk (Info page, there is no option to open PRs to I'm sorry for this but I hope you will understand our motives and why this is good for everyone and had nothing to do at all with your proposed change. Also, please submit code changes to |
|
I'm happy to support either way. This was a change that I mentioned in the forums so I wanted to make sure I got a PR open. If submitting to dnsmasq is the way to go, I'm happy to do that. I have the dnsmasq source locally as well, I'll make an attempt at porting the patch to that code base. If I run into issues, can I post here? |
|
Absolutely! |
|
@tresni If you want to use your feature already now in Pi-hole, you can switch ti the bleeding-edge FTL branch which just picked up your patch today (a27969c). Use to get to this branch but remember to use before/after the next (not this week) regular release of FTL because these feature branches are deleted after they are merged. |
|
Thanks @DL6ER , I'm currently using it and passed on the instructions to a few others I know. |
|
@tresni Just be aware that this is in fact a bleeding-edge branch where we're constantly adding new stuff from the HEAD of I'll re-open this issue ticket so I remember to send you a message to go back to |
|
This pull request has been mentioned on Pi-hole Userspace. There might be relevant details there: https://discourse.pi-hole.net/t/join-us-beta-testing-pi-hole-ftl-v5-9-web-v5-6-and-core-v5-4/48021/1 |
1 similar comment
|
This pull request has been mentioned on Pi-hole Userspace. There might be relevant details there: https://discourse.pi-hole.net/t/join-us-beta-testing-pi-hole-ftl-v5-9-web-v5-6-and-core-v5-4/48021/1 |
|
This pull request has been mentioned on Pi-hole Userspace. There might be relevant details there: |
|
This pull request has been mentioned on Pi-hole Userspace. There might be relevant details there: https://discourse.pi-hole.net/t/pi-hole-ftl-v5-9-web-v5-6-and-core-v5-4-released/49544/1 |
|
Hi there @tresni !! Possibly the wrong place to post this comment, but I came across this feature in the release notes for FTL 5.9. Maybe I'm just incredibly dense, but any chance you've got the instructions on how to enable this feature? I have an Umbrella enterprise account, have all the info needed from there to register a device / tie it to my org....but am a bit lost on where to add this config on the pi-hole side. |
|
@jaykder You can’t do this through any Pi-hole UI, so need to be okay with the command line to do this. Create a file called /etc/dnsmasq.d/99-umbrella.conf and add the options there: see http://www.thekelleys.org.uk/dnsmasq/docs/dnsmasq-man.html for details on config |
Perfect, all good with some CLI edits, thanks so much! Very excited to see this feature, thank you for the work! |
|
@jaykder heads up that there is not suppose to be a line break in there. Just noticed, I originally typed that comment up on my phone so I just thought it was wrapping because of the phone. |
By submitting this pull request, I confirm the following (please check boxes, eg [X]) Failure to fill the template will close your PR:
Please submit all pull requests against the
developmentbranch. Failure to do so will delay or deny your requestHow familiar are you with the codebase?: 5
This pull request add support for Cisco Umbrella/OpenDNS Device ID and remote IP reporting. This is based on the information at https://docs.umbrella.com/umbrella-api/docs/identifying-dns-traffic and https://docs.umbrella.com/umbrella-api/docs/identifying-dns-traffic2 . Using
--umbrellaby itself will enable Remote IP reporting. This can not be used for any policy filtering in Cisco Umbrella/OpenDNS. Additional information can be supplied using specific option specifications, multiple can be separated by a comma:--umbrella=orgid:1234,deviceid=0123456789abcdefSpecifies that you want to report organization 1234 using device 0123456789abcdef. For Cisco Umbrella Enterprise, see Register (Create) a device how to get a Device ID and Organization ID endpoint to get organizations ID. For OpenDNS Home Users, there is no organization, see Registration API endpoint for how to get a Device ID. Asset ID should be ignored unless specifically instructed to use by support.