A lot of queries from a customer.
Paul Wouters
paul at cypherpunks.ca
Tue Jul 17 16:32:36 UTC 2012
On Tue, 17 Jul 2012, Drunkard Zhang wrote:
>>> I don´t find the ways to limit of queries per minutes on this customer
>>> Is it possible in Bind9 a filtering these queries, to limit the responses
>
> We use iptables doing this, which works fine for us:
> iptables -A INPUT -p udp -m state --state NEW -m connlimit
> --connlimit-upto 500 --connlimit-mask 32 --connlimit-saddr -m udp
> --dport 53 -j ACCEPT
> iptables -A INPUT -p tcp -m state --state NEW -m connlimit
> --connlimit-upto 200 --connlimit-mask 32 --connlimit-saddr -m tcp
> --dport 53 -j ACCEPT
You realise that this could just cause you more queries right?
Paul
More information about the bind-users
mailing list