Hi Markus, On 26-Apr-2019 14:55 CEST, <markus.ehrlic...@komsa.de> wrote:
> Hello together, > > since recently we use two powerDNS Authoritative Servers (v.4.1.8) for > managing our own domains. Is it possible, to rate-limit dns lookups for > non-existing Domains? > Background: from time to time (several times a day), we get hundreds (or > thousands) of requests to random, non-existing, subdomains for one domain, we > are authoritative for. The root domain is the same in all requests. I don't > understand the aim of this attacks, but want to limit it in some possible > ways. This looks like a mission for dnsdist (http://www.dnsdist.org) Especially this section: https://dnsdist.org/guides/dynblocks.html#dynblockrulesgroup Cheers, -- Nico _______________________________________________ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
