Re: [CentOS] BIND server getting DDOS

2022-08-04 Thread Mark Milhollan
On Wed, 3 Aug 2022, Gordon Messmer wrote: On 8/3/22 11:08, Mark Milhollan wrote: Usually that's someone hoping to use you in a reflection attack Doesn't a reflection attack require the reflecting server to answer queries?  I'd think that the server logging that the query was denied would in

Re: [CentOS] BIND server getting DDOS

2022-08-04 Thread Mike Burger
On 2022-08-03 23:20, Gordon Messmer wrote: On 8/3/22 11:08, Mark Milhollan wrote: Usually that's someone hoping to use you in a reflection attack Doesn't a reflection attack require the reflecting server to answer queries?  I'd think that the server logging that the query was denied would ind

Re: [CentOS] BIND server getting DDOS

2022-08-03 Thread Gordon Messmer
On 8/3/22 11:08, Mark Milhollan wrote: Usually that's someone hoping to use you in a reflection attack Doesn't a reflection attack require the reflecting server to answer queries?  I'd think that the server logging that the query was denied would indicate that it is not vulnerable to that ty

Re: [CentOS] BIND server getting DDOS

2022-08-03 Thread Phil Perry
On 03/08/2022 19:08, Mark Milhollan wrote: On Tue, 2 Aug 2022, Robert Moskowitz wrote: I just, maybe, figured out why I have been having problems with my CentOS DNS server with BIND 9.11.4. Aug  2 15:47:19 onlo named[6155]: client @0xaa3cad80 114.29.194.4#11205 (.):  view external: query (ca

Re: [CentOS] BIND server getting DDOS

2022-08-03 Thread Mark Milhollan
On Tue, 2 Aug 2022, Robert Moskowitz wrote: I just, maybe, figured out why I have been having problems with my CentOS DNS server with BIND 9.11.4. Aug  2 15:47:19 onlo named[6155]: client @0xaa3cad80 114.29.194.4#11205 (.): view external: query (cache) './A/IN' denied Aug  2 15:47:19 onlo na

Re: [CentOS] BIND server getting DDOS

2022-08-02 Thread Gordon Messmer
On 8/2/22 14:03, Robert Moskowitz wrote: I just, maybe, figured out why I have been having problems with my CentOS DNS server with BIND 9.11.4. Can you tell us more about what problem you've been having? Aug 2 15:47:19 onlo named[6155]: client @0xaa3cad80 114.29.194.4#11205 (.): view extern

Re: [CentOS] BIND server getting DDOS

2022-08-02 Thread Spoto, Ron
Maybe try Fail2Ban on your server? -Original Message- From: CentOS On Behalf Of Robert Moskowitz Sent: Tuesday, August 2, 2022 2:03 PM To: CentOS mailing list Subject: [External] [CentOS] BIND server getting DDOS I just, maybe, figured out why I have been having problems with my CentOS