I remember it as well. The issue should have been fixed many years ago. see https://github.com/apache/cloudstack/pull/1663
-Wei On Mon, Mar 11, 2024 at 11:09 AM Nux <[email protected]> wrote: > > I have seen this in the past where port 53 was open on these public IPs > on the VR and was indeed leading to amplification attack. > > It's super easy to verify, from some 3rd party IP that you know is not > whitelisted anywhere in your firewall or cloudstack, run a host or dig > command that unallocated IP. If it replies, there is a problem. > > dig @IP apache.org a > host apache.org IP > > >
