Monitoring of "blackholed" DNS servers
Warren Kumari
warren at kumari.net
Fri Jun 8 18:04:06 UTC 2012
If it were me I'd just block access with iptables (and maybe blackhole as well if I were sufficiently concerned) and combine that with the iptables log action…
W
On Jun 8, 2012, at 1:44 PM, <Christopher.Harrington at emc.com> wrote:
> All,
>
> We have a list of DNS servers that we do not want our BIND DNS server interacting with. We can put the IP addresses of those servers in the blackhole substatement under options. Is there a way to monitor for when our DNS server tries to communicate with servers that are in the blackhole list? Is there a certain level of logging that needs to be enabled to see this?
>
> Thanks,
>
> --Chris
>
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
With Feudalism, it's your Count that votes.
More information about the bind-users
mailing list