[dnsdist] Number of Actions
Klaus Darilion
klaus.mailinglists at pernau.at
Mon Apr 15 18:39:30 UTC 2019
Hello!
Is there a max number of actions, before there might be performance
problems?
During a random subdomain attack I would like to "whitelist" all real
subdomains and then rate limit the rest, ie:
-- Allow the following lables without limiting
addAction(QNameRule("www.example.com"), AllowAction())
addAction(QNameRule("mail.example.com"), AllowAction())
... (around 500 more lables)
-- Ratelimiting for all other labels
addAction(AndRule({makeRule("example.com"),NotRule(MaxQPSRule(10))}),
DropAction())
May I experience performance problems when all my queries have to pass
through 500 actions first?
Thanks
Klaus
More information about the dnsdist
mailing list