On 01/31/2013 09:52 AM, Tony Finch wrote: > Keith Mitchell <[email protected]> wrote: > >> For more information on this problem, and DNS rate-limiting patches >> which are available for BIND and Unbound. > > I don't think there is a rate limiting patch for Unbound - since it is > recursive-only Unbound should be configured to ignore or reject reflection > attack queries. > > Perhaps you are thinking of the NSD rate limiting patch: > http://www.nlnetlabs.nl/blog/2012/10/11/nsd-ratelimit
Indeed yes, shortly after pressing send, I realised I meant NSD not Unbound. Thanks, Keith
