Holemans Wim <wim.holem...@ua.ac.be> wrote:
>
> I have 2 questions, one, is there a way to rate-limit the amount of
> request a single client (the AD servers in this case) can have standing
> out against a bind server ? Kind of rate-limiting parameter for bind
> name server.
There isn't a way to do this in BIND. If you are running on Linux you
might try the iptables hashlimit module,
http://www.bortzmeyer.org/rate-limiting-dns-open-resolver.html
(The recently announced response rate limiting patch won't work for you
since it takes effect too late in the resolution process.
http://www.redbarn.org/dns/ratelimits)
I'm afraid I don't have an answer to your other question.
Tony.
--
f.anthony.n.finch <d...@dotat.at> http://dotat.at/
Plymouth, Northwest Biscay: Southwesterly 5 to 7, occasionally gale 8 in
Plymouth. Rough or very rough, occasionally high in west Plymouth. Showers.
Good, occasionally poor.
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
