[Pdns-users] DNS amplification attack advice
Thomas Mieslinger
miesi at pc-h.de
Wed May 30 07:43:25 UTC 2012
You could also install dsc (on debian it is divided in
dsc-statistics-collector and dsc-statistics-presenter) to get a detailed
view on which traffic is hits your Server.
Am 30.05.2012 09:13, schrieb kalpesh thaker:
> On 29/05/2012 18:29, Peter Gervai wrote:
>>
>> By the way what amount of traffic you're observing?
>>
>> g
>>
>
> Its a little difficult to say exactly, but from the traffic logs i
> saw... it was close to 2.5Mbps at its peak, and that was only on the
> primary.
> generally when i used the built-in PDNS webserver (when i could get to
> it), i observed an average of around 590-580 queries per second
> during a 3 hour period yesterday between the master and the slaves, with
> a peak of 650. at that stage, AFXR transactions were not
> working between the master and slaves.
>
> The last 12 hours have been much better though...i think the firewall
> chains i've setup have managed to restrain alot of incoming DOS traffic.
> Google and OpenDNS are managing to recurse our zones ok..so the
> situation is looking much better.
> _______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> http://mailman.powerdns.com/mailman/listinfo/pdns-users
More information about the Pdns-users
mailing list