<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">If your goal is to reduce the load on your server, I would install something like fail2ban and configure it to watch your pdns logs. It pattern matches, so it should be trivial to do so. It can dynamically modify iptables rules to block requests from an "offending" IP. See <a href="http://www.fail2ban.org">www.fail2ban.org</a>. <div><br></div><div>I wouldn't recommend doing an upgrade to your software (especially to a release candidate) while under "attack."</div><div><br></div><div>m.</div><div><br><div><div>On Jun 9, 2011, at 1:54 PM, kim Doff wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite"><div>Hello,</div><div><br></div><div>I have PowerDNS Authoritative Server is 2.9.22 on Centos 5.5 32 bits.</div><div><br></div><div>I do not allow external recursion but I have had a brutal mass-bombing</div><div>from China and Romania.</div>
<div><br></div><div>Jun 09 15:01:17 domain pdns[28541]: Not authoritative for '<a href="http://adobe.com/">adobe.com</a>', </div><div>sending servfail to 93.113.174.225 (recursion was desired)</div><div><br></div><div>
I want to install PowerDNS Authoritative Server Release Candidate is 3.0-rc2</div><div>DNSSEC</div><div><br></div><div>How can I install it on Centos 5.5 32 bits?</div><div><br></div><div>I am a newbie.</div><div><br></div>
<div>Best Regards,</div><div><br></div>
_______________________________________________<br>Pdns-users mailing list<br><a href="mailto:Pdns-users@mailman.powerdns.com">Pdns-users@mailman.powerdns.com</a><br>http://mailman.powerdns.com/mailman/listinfo/pdns-users<br></blockquote></div><br></div></body></html>