Re: [CentOS] BIND server getting DDOS

2022-08-04 Thread Mark Milhollan
On Wed, 3 Aug 2022, Gordon Messmer wrote: On 8/3/22 11:08, Mark Milhollan wrote: Usually that's someone hoping to use you in a reflection attack Doesn't a reflection attack require the reflecting server to answer queries?  I'd think that the server logging that the query was denied would

Re: [CentOS] BIND server getting DDOS

2022-08-04 Thread Mike Burger
On 2022-08-03 23:20, Gordon Messmer wrote: On 8/3/22 11:08, Mark Milhollan wrote: Usually that's someone hoping to use you in a reflection attack Doesn't a reflection attack require the reflecting server to answer queries?  I'd think that the server logging that the query was denied would

Re: [CentOS] BIND server getting DDOS

2022-08-03 Thread Gordon Messmer
On 8/3/22 11:08, Mark Milhollan wrote: Usually that's someone hoping to use you in a reflection attack Doesn't a reflection attack require the reflecting server to answer queries?  I'd think that the server logging that the query was denied would indicate that it is not vulnerable to that

Re: [CentOS] BIND server getting DDOS

2022-08-03 Thread Phil Perry
On 03/08/2022 19:08, Mark Milhollan wrote: On Tue, 2 Aug 2022, Robert Moskowitz wrote: I just, maybe, figured out why I have been having problems with my CentOS DNS server with BIND 9.11.4. Aug  2 15:47:19 onlo named[6155]: client @0xaa3cad80 114.29.194.4#11205 (.):  view external: query

Re: [CentOS] BIND server getting DDOS

2022-08-03 Thread Mark Milhollan
On Tue, 2 Aug 2022, Robert Moskowitz wrote: I just, maybe, figured out why I have been having problems with my CentOS DNS server with BIND 9.11.4. Aug  2 15:47:19 onlo named[6155]: client @0xaa3cad80 114.29.194.4#11205 (.): view external: query (cache) './A/IN' denied Aug  2 15:47:19 onlo

Re: [CentOS] BIND server getting DDOS

2022-08-02 Thread Gordon Messmer
On 8/2/22 14:03, Robert Moskowitz wrote: I just, maybe, figured out why I have been having problems with my CentOS DNS server with BIND 9.11.4. Can you tell us more about what problem you've been having? Aug 2 15:47:19 onlo named[6155]: client @0xaa3cad80 114.29.194.4#11205 (.): view

Re: [CentOS] BIND server getting DDOS

2022-08-02 Thread Spoto, Ron
Maybe try Fail2Ban on your server? -Original Message- From: CentOS On Behalf Of Robert Moskowitz Sent: Tuesday, August 2, 2022 2:03 PM To: CentOS mailing list Subject: [External] [CentOS] BIND server getting DDOS I just, maybe, figured out why I have been having problems with my CentOS

[CentOS] BIND server getting DDOS

2022-08-02 Thread Robert Moskowitz
I just, maybe, figured out why I have been having problems with my CentOS DNS server with BIND 9.11.4. Aug  2 15:47:19 onlo named[6155]: client @0xaa3cad80 114.29.194.4#11205 (.): view external: query (cache) './A/IN' denied Aug  2 15:47:19 onlo named[6155]: client @0xaa3cad80