Hi--
On Oct 17, 2011, at 3:37 PM, Karl Auer wrote:
> To see it, do (for example):
>
> dig+trace biplane.com.au ns
>
> Some such queries return correctly, some end up in a BHR loop.
I don't see a "bad horizontal referral" being returned anywhere, but I do get
errors against ppsdns6.pps.com.au
Hi there.
I have three domains, biplane.com.au, nullarbor.com.au and
footprint.org.au. All are show intermittent but frequent "bad horizontal
referral". It happens at the .com.au level.
To see it, do (for example):
dig+trace biplane.com.au ns
Some such queries return correctly, some end up i
On 10/17/2011 09:05 PM, Lightner, Jeff wrote:
I’m confused – does the OP want to block or does he want to redirect.
“block/redirect” are two different things. What I wrote will block. If
It'll block IPs, and whole IPs at that. If the server is shared, you
block all traffic to it, not just the
http://www.sans.org/reading_room/whitepapers/dns/dns-sinkhole_33523
Perhaps the above link target may help.
Thanks.
>
>From: "Lightner, Jeff"
>To: Ryan Novosielski ; babu dheen ;
>Bind Users Mailing List ; "c...@cam.ac.uk"
>
>Sent: Monday, October 17, 2011 4:
I’m confused – does the OP want to block or does he want to redirect.
“block/redirect” are two different things. What I wrote will block. If he
wants to redirect that’s fine but I don’t think he’d want to redirect to his
real webserver – why send bogus traffic there and also take the risk t
I do this. There may now be a smarter way, but I have a small number so this is
manageable for me: configure zones for each of the evil zones. Your server will
appear authoritative and you can direct clients wherever you like. I direct
some of mine to a virtualhost handing out 503 errors.
-- Se
On 10/17/2011 06:38 PM, babu dheen wrote:
YOu are obsolutely correct Chris.. I want to block/redirect all malware
domain request intiated by clients by setting up DNS SINKHOLE in Redhat
BIND server.
In older versions of bind, you needed to create a local zone per malware
domain (or hostname).
Il 17/10/2011 17:09, Matt Rowley ha scritto:
but if you're ok with all of the records in the zone being identical, you could
point both zones to the same file in your named.conf
If I am the one who host the name server for example.com :)
___
Please v
YOu are obsolutely correct Chris.. I want to block/redirect all malware domain
request intiated by clients by setting up DNS SINKHOLE in Redhat BIND server.
--- On Mon, 17/10/11, Chris Thompson wrote:
From: Chris Thompson
Subject: Re: DNS Sinkhole in BIND
To: "Bind Users Mailing List"
Cc:
Il 17/10/2011 14:36, Jan-Piet Mens ha scritto:
Why don't you describe what you are trying to accomplish and what you
need that an additional A/ record won't solve? You've been told how
to solve the problem, and the members on this list are helping you avoid
shooting yourself in the foot.
On
> I wan to point "example.org" to the same ip as "example.com", but I don't
> want to manually change the A entry when example.com change its address.
Maybe I'm misunderstanding what you're after... but if you're ok with all of
the records in the zone being identical, you could point both zones
On Oct 16 2011, babu dheen wrote:
Can anyone help me how to setup DNS Sinkhole in BIND on Linux 32 bit edition.
All the replies to this so far seem to assume that he wants to block evil
entities from using his nameservers. But Google seems to suggest that
"DNS Sinkhole" usually refers to redir
On 10/17/2011 5:59 AM, Nico Aragón wrote:
Hello,
I'm new to Bind. My previous registrar (or was it the hosting
provider?) was so kind to manage DNS for me. But now I'm required to
configure a DNS server in the very same VPS that hosts the HTTP and
mail server.
I've managed to set it running and
Il 17/10/2011 14:36, Jan-Piet Mens ha scritto:
Why don't you describe what you are trying to accomplish and what you
need that an additional A/ record won't solve? You've been told how
to solve the problem, and the members on this list are helping you avoid
shooting yourself in the foot.
I
For some reason those rules wrapped to one line on the bounce back - each rule
starts with the -A and ends with the DROP.
-Original Message-
From: bind-users-bounces+jlightner=water@lists.isc.org
[mailto:bind-users-bounces+jlightner=water@lists.isc.org] On Behalf Of
Lightner, J
Create an entry for just the domain and be sure to add a dot to the end so it
doesn't append the domain name:
nicaragon.com. IN A 46.105.24.194
www IN A 46.105.24.194
Without the dot the domain is appended so that nicargon.com without a dot would
actually be seen as nicaragon.com.nicaragon
While setting up blackholes in BIND works fine when I did this on Linux I found
that setting up iptables to do drops for known bad IPs/ranges was slightly
better as the traffic never gets to BIND in the first place as it is stopped at
kernel level. It simply DROPs the packet without telling the
> I don't mind, but how can I create a CNAME in the parent?
Why don't you describe what you are trying to accomplish and what you
need that an additional A/ record won't solve? You've been told how
to solve the problem, and the members on this list are helping you avoid
shooting yourself in th
On 17/10/11 13:00, Niccolò Belli wrote:
Il 17/10/2011 13:40, Chris Thompson ha scritto:
A *CNAME* in the parent would, but only as long as you didn't mind
losing all the rest of the zone.
I don't mind, but how can I create a CNAME in the parent?
Can you please make an example?
*You* can't. O
Il 17/10/2011 13:40, Chris Thompson ha scritto:
A *CNAME* in the parent would, but only as long as you didn't mind
losing all the rest of the zone.
I don't mind, but how can I create a CNAME in the parent?
Can you please make an example?
Thanks,
Niccolò
On Oct 16 2011, Kevin Oberman wrote:
2011/10/16 Niccolò Belli :
I'm sorry but I still didn't understand if it's possible to do it with some
workaround, and if yes HOW to do it.
No, you can' have a CNAME at the top of a zone. A zone requires an SOA
and CNAMEs cannot co-exist with ANY other rec
Hello,
I'm new to Bind. My previous registrar (or was it the hosting
provider?) was so kind to manage DNS for me. But now I'm required to
configure a DNS server in the very same VPS that hosts the HTTP and
mail server.
I've managed to set it running and (apparently) working after reading
some qui
22 matches
Mail list logo
