Ejaz mejaz at cyberia.net.sa
Tue Jul 26 09:53:26 UTC 2016


Thanks for all the comments. 


One more thing I can control it through rate limit or block whole but the
same thing happened to another network will be problem ?? 


See the packet capture from the network device the outgoing traffic passing
from 0 port instead of 53.  Why is that any clue.  I mean bind application
should not all other port instead 53??




Gi0/2    Gi0/1  11 0000 0000

Gi0/2    Gi0/1  11 0000 0000

Gi0/2    Gi0/1 11 0000 0000

Gi0/2    Gi0/1 11 0000 0000

Gi0/2    Gi0/1 11 0000 0000

Gi0/2    Gi0/1 11 0000 0000


Thanks in advance for your support. 




-----Original Message-----
From: Tony Finch [mailto:dot at dotat.at] 
Sent: Tuesday, July 26, 2016 11:54 AM
To: Ejaz <mejaz at cyberia.net.sa>
Cc: 'Abdul Khader' <akhader at ies.etisalat.ae>; bind-users at lists.isc.org
Subject: RE: outgoing-traffic


Ejaz < <mailto:mejaz at cyberia.net.sa> mejaz at cyberia.net.sa> wrote:


> I am not using iptable  firewall from my redhat Linux box,  all 

> traffic manged by network team..


Well then, you should co-operate with them to fix the problem.


You might find that it helps to put the following in the options{} section
of named.conf, but I'm not sure if it will be effective against a TCP flood


                blackhole {; };




f.anthony.n.finch  < <mailto:dot at dotat.at> dot at dotat.at>
<http://dotat.at/> http://dotat.at/  -  I xn--zr8h punycode Forties,
Cromarty, Forth, Tyne, Dogger: West or southwest 4 or 5. Slight,
occasionally moderate at first. Rain or showers. Good, occasionally

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20160726/7bb49341/attachment.html>

More information about the bind-users mailing list