RE: I'm having thousands of queries a domain isc.org and this increases my cpu percentage to 100%. That may be happening and how I can control this? is an attack? attachment of the log I made an updat

> Instead of blocking the source (which aren't even real - they're > spoofed) why not just block access to your recursive resolver on port 53. I need my DNS server to resolve for my authoritative domain, I have 30+ domains here I can't block acces to port 53. Denis _

RE: I'm having thousands of queries a domain isc.org and this increases my cpu percentage to 100%. That may be happening and how I can control this? is an attack? attachment of the log I made an updat

> These seems like some attack going on, after reading the mails i also check > my recursive server and found a lot of these in my logs: > my server is not an open recursive server its only open to my clients and > these are not even from my country. Same here, my DNS are open to my clients only

Bind 9.5.2-P1 and rrset-order

" order fixed; order cyclic; }; If I try to start bind I get this error: Error in named configuration: /var/named/conf/options:20: unknown option 'rrset-order' If I remove the option there's no error starting named. What am I doing wrong??? Thanks, Denis Lave