On 2022-04-20 23:07, Richard T.A. Neal wrote:
Hi Hal,
In addition to this you might also want to look into Response Rate
Limiting. This may help to reduce the load on your DNS servers from
bad actors without having to play a cat & mouse game of spotting and
blocking them.
Response Rate Limiting is explained in detail in the BIND ARM here
(scroll down to section 4.2.16.19):
https://downloads.isc.org/isc/bind9/9.18.2/doc/arm/html/reference.html
how well does this work with very low $TTL in zone file ?
https://blog.apnic.net/2019/11/12/stop-using-ridiculously-low-dns-ttls/
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
