[dns-operations] DNS deluge for x.p.ctrc.cc

Geo. geoincidents at nls.net
Wed Mar 1 17:19:41 UTC 2006

> If the ISP fixes their DNS servers to restrict the Ips for
> which they answer recursive queries, then those fixed DNS
> servers will ignore the spoofed request because the spoofed
> request appears to come from an IP that hey do not serve.

Not if they "fix" their dns servers with a firewall rule instead of a dns
server option. Many dns servers do not have a setting to restrict recursive
to local subnet only (windows 2000 or Posadis for example).

And then you have the folks who run behind NAT believing they don't need to
worry about such things. You remember them, they were the ones querying for
rfc1918 space...


More information about the dns-operations mailing list