[dnsdist] advice needed

[mailinglist at tikklik.nl]

Hello All,

 

I had the following setup:
server ns1:

Dnsdist -> 127.0.0.1 pdns
sql backend replicated database
Server ns2:

DNSdist -> 127.0.0.1 pdns sql backend replicated database

 

Last week I was attacked 3 times.

Flooding my system 
yesterday 53 miljioen hits in 10 minutes

 

Im now on nawas DDOs temperarly
That was the online way to stop it.


I now splitted my DNS server (multiple resellers)
and the above setup is now 3 times so separate the load.

 

The question…
What is the best way now
keep this setup 
- 6x dnsdist
- 6 different ns servers

 

Or should I use one dnsdist that connects tyo the 6 dns servers for load balancing

My idee was to keep this setup and then let all 6 dnsdist connect to the 6 servers so if there are problems I can remove a dns from one of the 6

But how to do that without exposing pdns to the public

 

Sorry im dutch 😊
Hope I made myself clear

 

With regards


Steffan

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/dnsdist/attachments/20250227/d1b2db77/attachment.htm>