[Pdns-users] UDP Connection Table Exhaustion?
Matthew Walster - Gyron
matthew.walster at gyron.net
Fri Jul 3 08:19:21 UTC 2009
> -----Original Message-----
> From: bert.hubert at gmail.com [mailto:bert.hubert at gmail.com] On Behalf Of
> bert hubert
> Sent: 03 July 2009 09:16
> To: Matthew Walster - Gyron
> Cc: Sten Spans; Pdns-users at mailman.powerdns.com
> Subject: Re: [Pdns-users] UDP Connection Table Exhaustion?
>
> To nuance this a bit - on Linux, you can have great benefit from the
> iptables 'NOTRACK' target, which can help you do firewalling that will
> not run into problems from busy DNS traffic.
I'll have to look into that one, thanks. AFAICT, the only iptables rules we run are for icmp 0/3/8/11, ssh, dns, and what appears to be some kind of multicast traffic.
Thanks for the tip!
Matthew Walster
This message may be private and confidential. If you have received this message in error, please notify us and remove it from your system.
Gyron may monitor email traffic data and the content of email for the purposes of security and staff training.
Gyron Internet Ltd is a limited company registered in England and Wales. Registered number: 4239332. Registered office: 3 Centro, Boundary Way, Hemel Hempsted, HP2 7SU. VAT reg no 804 2532 63. Gyron is a registered trademark.
More information about the Pdns-users
mailing list