Hi List I am new to this list, ans would like to say hello pdns users! Setup: Version: 4.1 Backend: MySQL OS: Ubuntu 16.04 pdns Server acts as Slave Server
In my lab, i made a axfr zone transfer with several records. I was wondering if there is only one [1] solution to prevent/throttle a master Server sent all couple of minutes a zone transfer with a huge "fake" zone to triger a DoS situation. The syslogs says there was more than 5000 messages in the queue to write down to MySQL [2]. so my guess is, the MySQL Server is too slow. Is there a solution to slow down a zone transfer? Maybe my toughts are in a wrong directon, but from my point of view, in a real life scenario, a DoS is possible with a huge zone transfer all couple of minutes. What do you recommend? tune MySQL Server? add DoS prevention tool in front like fail2ban? Thank you very much for your input! BR A [1] https://doc.powerdns.com/authoritative/settings.html#xfr-max-received-mbytes [2] https://doc.powerdns.com/authoritative/settings.html#max-queue-length
_______________________________________________ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
