On 2013-05-24 12:52 , Michael Richter wrote: [..] > What can you do to limit this stupid traffic: - rate limit the > queries per customer (not really a good idea) - rate limit this > special kind of queries. (that's the best way at the moment) > > I haven't had the time to look into the packets to limit this > queries. If they are all similiar you can set up a drop filter in the > iptables like you should already have with the isc.org ANY requests. > -> Problem not really solved but you should be happy with this :-) [..] > but what's the hex string for this kind of query. anybody got it?
You want to deploy RRL. iptables is not the right location for doing this kind of stuff as you will have false positives. Please see http://www.redbarn.org/dns/ratelimits Greets, Jeroen _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
