|
Oh yes, how silly of me having missed it... For ratelimit-below-domain is there a wildcard syntax eligable, e.g. for second level domain queries = ratelimit-below-domain: .* 2 or third level domain queries: = ratelimit-below-domain: *.* 1 The limiting is scaled to seconds (qps) only and there is no option for a per minute or per hour (or per domain record TTL)? I was thinking that a combined logic (ip-ratelimit + ratelimit-below-domain) per ip-ratelimit-below-domain would be useful. On 26.11.2018 10:28, Unbound-users
wrote:
Hi, Unbound has ratelimit options for both user query count (ip-ratelimit) and number of iterative queries under a domain beneath a zone (ratelimit-below-domain and ratelimit-for-domain). The first is per-IP address, the second based on domain name. Could set a global number, or specify the culprit's client-IP or the tunnel service domain name.Best regards, Wouter |
- Re: IN TXT & NULL... Joe Abley via Unbound-users
- Re: IN TXT &... ѽ҉ᶬḳ℠ via Unbound-users
- Re: IN TXT &... ѽ҉ᶬḳ℠ via Unbound-users
- Re: IN TXT &... Maciej Gawron via Unbound-users
- Re: IN TXT &... Paul Vixie via Unbound-users
- Re: IN TXT &... Maciej Gawron via Unbound-users
- Re: IN TXT &... ѽ҉ᶬḳ℠ via Unbound-users
- Re: IN TXT &... Paul Vixie via Unbound-users
- Re: IN TXT &... ѽ҉ᶬḳ℠ via Unbound-users
- Re: IN TXT &... Wouter Wijngaards via Unbound-users
- ip rate limi... ѽ҉ᶬḳ℠ via Unbound-users
- Re: IN TXT &... Maciej Gawron via Unbound-users
- Re: IN TXT &... ѽ҉ᶬḳ℠ via Unbound-users
- Re: IN TXT &... Paul Vixie via Unbound-users
- Re: IN TXT &... ѽ҉ᶬḳ℠ via Unbound-users
- Re: IN TXT & NULL trash records Daisuke HIGASHI via Unbound-users
- Re: IN TXT & NULL trash recor... ѽ҉ᶬḳ℠ via Unbound-users
- Re: IN TXT & NULL trash recor... Maciej Gawron via Unbound-users
- Re: IN TXT & NULL trash r... ѽ҉ᶬḳ℠ via Unbound-users
