On Tue, 22 Mar 2005 15:49:01 -0500, lister lynch wrote > Our ISP, Covad, is periodically claiming that we have excessive DNS > requests and is threatening to turn off our service. It's primarily > due to SA, I think. Looked around for answers, and already set a > bunch of the BL checks to 0.0 to turn off the rules. Any idea how > to further prevent the excessive DNS requests?
Run your own caching DNS server. A side benefit will be faster DNS lookups. You'll be able to turn your DNS-based blacklists back on, too. I can't give you specific instructions for FC1, but I know older versions of RedHat had a package specifically for this, all preconfigured.
