DNS Sinkhole in BIND
Michelle Konzack
linux4michelle at tamay-dogan.net
Thu Oct 27 17:51:37 UTC 2011
Hello G.W. Haywood,
Am 2011-10-27 16:56:44, hacktest Du folgendes herunter:
> On Thu, 27 Oct 2011 Michelle Konzack wrote:
> > ...and you get the hell on you ass if you have several 1000 of them!
> > In this case, bind9 with RPZ is cheaper.
> Maybe look at ipsets. Currently we firewall almost 76,000 networks.
> [root at mail3 ~]# ipset -L | grep -v BLOCK | wc -l
> 75845
...by accepting, IPT consum 90% of the CPU resources. =8<O
Thanks, Greetings and nice Day/Evening
Michelle Konzack
--
##################### Debian GNU/Linux Consultant ######################
Development of Intranet and Embedded Systems with Debian GNU/Linux
Internet Service Provider, Cloud Computing
<http://www.itsystems.tamay-dogan.net/>
itsystems at tdnet Jabber linux4michelle at jabber.ccc.de
Owner Michelle Konzack
Gewerbe Strasse 3 Tel office: +49-176-86004575
77694 Kehl Tel mobil: +49-177-9351947
Germany Tel mobil: +33-6-61925193 (France)
USt-ID: DE 278 049 239
Linux-User #280138 with the Linux Counter, http://counter.li.org/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.pgp
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20111027/c6be396b/attachment.bin>
More information about the bind-users
mailing list