limiting number of requests of a single hosts
pangj at riseup.net
Fri Jun 15 15:16:31 UTC 2012
> You DO realize that DNS is (mostly) UDP packets, and an attacker (or
> in your case, the ADs) can simply send UDP packet floods to kill your
> firewall (in your current state), regardless how your DNS server is
> configured, even when the DNS server is down?
Once we had the firewall for DNS, when it get bunk of queries from the
suspect addresses, it returns truncating message and indicates the
client to use TCP for queries.
Email/Jabber/Gtalk: pangj at riseup.net
Free DNS Hosting with www.DNSbed.com
More information about the bind-users