Malicious-DNS
MEjaz
mejaz at cyberia.net.sa
Sun Feb 17 09:20:47 UTC 2019
Dear bind-users.
Our NSC, has time to time complaining for such malicious DNS request for few
malicious domains.
Whereas my DNS servers are up-to-date (BIND 9.12.3-P1) and only our own
network is allowed to access.
Complain from NCSA, Nation cyber security Agency.
Up on checking the logs. I found several entries. And you know based on the
below logs I cannot find the source IP unless I enable the query logs. If
I enabled the system performs will slow down? Please any ones advice would
be highly appreciated.
::1#53
/var/log/messages-20190203:Feb 1 21:13:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:d1::1#53
/var/log/messages-20190203:Feb 1 21:13:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:c1::1#53
/var/log/messages-20190203:Feb 1 21:13:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:d0::1#53
/var/log/messages-20190203:Feb 1 21:13:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:c0::1#53
/var/log/messages-20190203:Feb 1 21:13:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:e0::1#53
/var/log/messages-20190203:Feb 1 21:13:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:e1::1#53
/var/log/messages-20190203:Feb 1 21:43:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:c0::1#53
/var/log/messages-20190203:Feb 1 21:43:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:d1::1#53
/var/log/messages-20190203:Feb 1 21:43:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:d0::1#53
/var/log/messages-20190203:Feb 1 21:43:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:e1::1#53
/var/log/messages-20190203:Feb 1 21:43:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:e0::1#53
/var/log/messages-20190203:Feb 1 21:43:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:c1::1#53
/var/log/messages-20190203:Feb 1 22:13:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:c1::1#53
/var/log/messages-20190203:Feb 1 22:13:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:d0::1#53
/var/log/messages-20190203:Feb 1 22:13:27 ns10 named[19579]: network
unreachable resolving 'vitaminc.pro/DS/IN': 2001:500:e0::1#53
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20190217/9a822a23/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 20695 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20190217/9a822a23/attachment-0001.png>
More information about the bind-users
mailing list