limiting number of requests of a single hosts

pangj pangj at riseup.net
Fri Jun 15 15:16:31 UTC 2012


> You DO realize that DNS is (mostly) UDP packets, and an attacker (or
> in your case, the ADs) can simply send UDP packet floods to kill your
> firewall (in your current state), regardless how your DNS server is
> configured, even when the DNS server is down?

Once we had the firewall for DNS, when it get bunk of queries from the 
suspect addresses, it returns truncating message and indicates the 
client to use TCP for queries.

-- 
Email/Jabber/Gtalk: pangj at riseup.net
Free DNS Hosting with www.DNSbed.com



More information about the bind-users mailing list