This is not good idea to use statefull firewall on heavy loaded DNS
server. firewall becomes low place in the system.
As workaround you can use dns_flood_detector + simple script to insert
and remove IP's from firewall blocking table or chain.
27.10.2010 23:26, Sebastian Tymków пишет:
> In FreeBS
In FreeBSD you can use pf to limit connections using tables and setting up
rate limit.
http://forums.freebsd.org/showthread.php?t=1727
Best regards,
Shamrock
On Tue, Oct 26, 2010 at 9:29 PM, Kebba Foon wrote:
> On Tue, 2010-10-26 at 15:22 -0400, Todd Snyder wrote:
> > What version of bind, on
29 PM
To: bind-users@lists.isc.org
Subject: RE: limiting number of recursion/queries per IP address
On Tue, 2010-10-26 at 15:22 -0400, Todd Snyder wrote:
> What version of bind, on what OS?
>
I use Debian 5.0 with bind 9.6-ESV-R1 but also i thought that the OS
might have some security holes so i
On Tue, 2010-10-26 at 15:22 -0400, Todd Snyder wrote:
> What version of bind, on what OS?
>
I use Debian 5.0 with bind 9.6-ESV-R1 but also i thought that the OS
might have some security holes so i try FreeBSD 8.1 with BIND 9.7.1 but
still have ihave the same problems.
> here may be some things yo
What version of bind, on what OS?
There may be some things you can do with iptables to limit connections
http://www.debian-administration.org/articles/187
I don't recall seeing anything native to BIND that would allow for limits per
src.
t.
-Original Message-
From: bind-users-bounces+
5 matches
Mail list logo
