Defense against a client?

Jeff Peng pyh at staff.dnsbed.com
Mon Jan 16 10:32:21 UTC 2012


于 2012-1-16 18:19, Tom Schmitt 写道:
> My question:
> Is there any possibility in Bind to give a quoata to a client? e.g. that from a given IP no more than houndred queries per second are allowed and the rest is to be blackholed.
>
> That way only the client causing the load would have a problem but not all other clients.
>
> Is there such a possibility? I found nothing in the documentation. Or are there other ways to achive this? How do you guys do this?

I think if the ip is out of the limit you can disable its query by 
iptables for some time.
You can get each ip's query count from the logfile.

HTH.



More information about the bind-users mailing list