[Pdns-users] Rate-Limit for NXDOMAIN
abang at t-ipnet.net
abang at t-ipnet.net
Sun May 5 07:56:37 UTC 2019
Hello Klaus,
Am 4. Mai 2019 23:37:40 MESZ schrieb Klaus Darilion <klaus.mailinglists at pernau.at>:
>I though about loading the bind Backend and semi-automated export the
>"attacke" zone (and all subzones) from the SQL backend to the bind
>backend. Then, patch PDNS to not check all backends for the best zone
>match (getSOA() lookups) but stop if a zone is found in the first
>backend. The bind backend should be easily cope with such traffic
>patterns.
This works also without patching PSNS. You cold run another instance, listening on another IP address and send queries for that zone to that IP address with a dnsdist rule.
Winfried
More information about the Pdns-users
mailing list