On 21 January 2014 13:12, Ayca Taskin (Garanti Teknoloji) <
ayc...@garanti.com.tr> wrote:
> We’re using Bind DNS server with version BIND 9.9.2 as a secondary
> (slave) dns server. We saw there is a lot of files starting with “db-“
> under /var/named directory and updating continuously. does an
On 29 April 2014 03:43, Ken Peng wrote:
> I am from China, ISP telecom.
> Can you tell what happens?
More than likely traffic was blocked/filtered by the Chinese firewall.
Take a packet capture and see what happens when you do a single query,
do you get a response at all, do you get any TCP reset
On 3 May 2014 07:40, T.Suzuki wrote:
> Additional page:
> http://www.e-ontap.com/dns/pandora_acjp_e/
What exactly is this supposed to show? I think everyone on this list
knows what a DNS poison/injection looks like from the point of the DNS
cache/query.
I'm still failing to see what this "Pandor
On 31 May 2014 15:11, hua peng wrote:
> But have a question that, how can I translate a standard email address
> to a rName within SOA, and then translate it back? is there a standary
> library for doing this? (I use Ruby, but py/pl are fine).
Rname to Email: replace the first unescaped "." with
I think you'll probably find that, averaged out over say a period of 1
hour, an active user will perform at least 1 query every 1-2 seconds.
Twitter, Facebook, anything that uses Ajax and not to mention tons of other
CDNs, Ad Networks etc. eat DNS queries like candy and then the underlying
OS quer
Link doesn't work, DNS resolution fails, ns6.gandi.net has no zone info for
xip.io, so it can't resolve ns-1.xip.io - think someone needs to check
their master/slave config...
sjcarr@grover:~ $ dig xip.io +trace
; <<>> DiG 9.7.3-P3 <<>> xip.io +trace
;; global options: +cmd
.401755
Is it really that much of an issue to have to start from an empty
cache? given that >75% of the cached RRs will have a TTL of <8 hours
anyway.
Steve
On 9 September 2012 14:45, Rubens Kuhl wrote:
>>
>> I'm not sure if I phrased my question correctly. It's not about
>> redundancy, but about keepi
On 6 November 2012 08:34, Stephane Bortzmeyer wrote:
> Why "by hand"? NOTIFY + IXFR is implemented in every name server
> software, and is standard (.fr has several DNS providers, too, and we
> certainly do not keep the data consistent by hand).
The majority of the providers listed do not support
ue to request what they
> like so that the authority service providers cannot do something.
>
> ________
> Liu Mingxing
>
> From: Steven Carr
> Date: 2012-11-06 17:08
> To: DNS Operations List
> CC: zhanglikun
> Subject: Re: [dns-operation
The option in BIND is "filter--on-v4" and has been available since
9.7, search for the option in
http://ftp.isc.org/isc/bind9/cur/9.8/doc/arm/Bv9ARM.ch06.html for the
full syntax of the option.
Steve
On 15 January 2013 21:55, Stephan Lagerholm
wrote:
> I believe they have a similar option b
On 15 May 2013 09:13, fenghe wrote:
> Does a hardware firewall help to defend the DNS attack?
> If so what's the suggested policy/rules?
Chances are your firewall will break long before your DNS server is overwhelmed.
DNS traffic should not be firewalled, the number of UDP transactions
will very
On 9 August 2013 02:51, Ken Peng wrote:
> All of my six nameservers have been attacking, it's against a special
> domain.
>
> I grep from the last 5 lines of log and get the attacking IPs as below.
> Can you tell what type of attack it is and how to stop this? Thanks.
Is there a reason why yo
On 9 August 2013 09:19, Jim Reid wrote:
> On 9 Aug 2013, at 09:14, Ken Peng wrote:
>
>> My nameservers are auth-only. that means we are the auth-servers for that
>> domain.
>
> => you have to answer those queries. If you think you're getting flooded,
> consider blacklisting the source IP addres
13 matches
Mail list logo
