[dnsdist] dynblock rules AND
Nico
nicomail at gmail.com
Wed Jun 5 17:12:35 UTC 2019
Thanks Remi!
Solved what we need using TimedIPSetRule and some Lua.
Quick question about that. Couldn't find a way to print the contents of a
TimedIPSetRule.
print( tb:slice():toString() ) only prints the number of addresses in the
set.
Thanks aganin!
On Mon, Jun 3, 2019 at 10:02 AM Remi Gacogne <remi.gacogne at powerdns.com>
wrote:
> Hi Nico,
>
> On 6/1/19 5:39 AM, Nico wrote:
> > Hi!
> > Small question about dynamic block rules
> > there is no AND for rate limiting rules ?
> >
> > its always OR
> >
> > local dbr = dynBlockRulesGroup()
> > dbr:setQTypeRate(dnsdist.ANY, 5, 10, "Exceeded ANY rate", 60)
> > dbr:setResponseByteRate(10000, 10, "Exceeded resp BW rate", 60)
> >
> > If I want to limit TXT byte rate for example....
>
> There is indeed no way to combine rules for the dynamic blocking
> feature. You should be able to do the kind of rate-limiting you have in
> mind with regular rules, though.
>
> Best regards,
> --
> Remi Gacogne
> PowerDNS.COM BV - https://www.powerdns.com/
>
> _______________________________________________
> dnsdist mailing list
> dnsdist at mailman.powerdns.com
> https://mailman.powerdns.com/mailman/listinfo/dnsdist
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/dnsdist/attachments/20190605/dd319fcc/attachment.html>
More information about the dnsdist
mailing list