[Pdns-users] Throttling DNS requests in PowerDNS recursor
Aki Tuomi
cmouse at youzen.ext.b2.fi
Wed Jun 25 16:26:08 UTC 2014
On Wed, Jun 25, 2014 at 11:33:44AM -0400, Edwin wrote:
> Hi PowerDNS mailing list,
>
> I was wondering if it is possible to throttle/rate-limit DNS
> requests that are incoming to a PowerDNS recursing server, without
> having to rely on IPtables. A little of context, we are getting
> thousands of requests per second to our resolvers from some (a
> handful) IP addresses, and we wish to proactively throttle requests
> when the query rate exceeds a certain threshold, in order to avoid
> the abuse of our servers.
>
> Sincerely,
> Edwin
>
The 3.6.0 version combined with a particular LUA script will achieve this. See
http://mailman.powerdns.com/pipermail/pdns-dev/2014-June/001452.html
And
https://github.com/Habbie/pdns/blob/luapolicy/pdns/policy-example-rrl.lua
Aki
More information about the Pdns-users
mailing list