Tom Eastep wrote: > I've place my DNSDDOS action files at > http://www.shorewall.net/pub/shorewall/contrib/DNSDDOS/. See the > aaREADME.txt file. > > Shorewall-perl users should be able to use it as-is.
It seems like 90+% of DNS queries against my name server are DDoS: Counters reset Sat Jan 31 19:02:01 PST 2009 Chain DNSDDOS (1 references) pkts bytes target prot opt in out source destination 4675 210K DROP all -- * * 0.0.0.0/0 0.0.0.0/0 STRING match "|010000010000000000000000020001|" ALGO name bm FROM 29 TO 30 330 23531 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 gateway:/etc/shorewall # -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
