On Dec 18, 2012, at 5:44 AM, Vernon Schryver wrote: > Yes, you could do response rate limiting (RRL) within an application aware > firewall by have the firewall do almost of all of the work of your DNS > server.
The 'application-aware firewall' will collapse from state-table exhaustion, however, so this likely isn't a very good idea. ;> ----------------------------------------------------------------------- Roland Dobbins <[email protected]> // <http://www.arbornetworks.com> Luck is the residue of opportunity and design. -- John Milton _______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations dns-jobs mailing list https://lists.dns-oarc.net/mailman/listinfo/dns-jobs
