Hi Bart!
Am 30.04.2019 um 16:31 schrieb power...@bart.bim.be:
In the normal case, suppressing responses may be a good thing to do,
if the actual problem is that the DNS responses are part of a DoS
attack (i.e. the DNS queries came in with spoofed source addresses).
The responses cause your I
Hi Brian!
Am 30.04.2019 um 15:37 schrieb Brian Candler:
On 29/04/2019 22:14, Klaus Darilion wrote:
Can you give an example how those dynblockrules can be used to filter
above "attack"? The main problem with rate-limiting NXDOMAIN is, that
you need to ask the authoritative to get a response and
