[Pdns-users] DoS with AXFR transfer
aka at nts.ch
Sun Dec 22 08:25:52 UTC 2019
I am new to this list, ans would like to say hello pdns users!
OS: Ubuntu 16.04
pdns Server acts as Slave Server
In my lab, i made a axfr zone transfer with several records. I was wondering if there is only one  solution to prevent/throttle a master Server sent all couple of minutes a zone transfer with a huge "fake" zone to triger a DoS situation.
The syslogs says there was more than 5000 messages in the queue to write down to MySQL . so my guess is, the MySQL Server is too slow.
Is there a solution to slow down a zone transfer?
Maybe my toughts are in a wrong directon, but from my point of view, in a real life scenario, a DoS is possible with a huge zone transfer all couple of minutes.
What do you recommend? tune MySQL Server? add DoS prevention tool in front like fail2ban?
Thank you very much for your input!
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Pdns-users