On Mon, Jan 19, 2009 at 11:41 AM, Christof Meerwald wrote:
> Is there anything a DNS server/PowerDNS can do to avoid being used as a DDoS
> reflector, like rate-limiting SERVFAILs per IP address? What's the general
> opinion?
For this particular attack you could set "send-root-referral=no"; that
I appreciate the suggestions. They were helpful.
I did finally figure out what was wrong. I don't understand one of the settings
in the configuration file.
In the /etc/powerdns/pdns.conf file I had:
local-address=127.0.0.1
When I changed it to the default value of
local-address=0.0.0.0
I
