[dns-operations] DNS ANY requests from Amazon?

Dobbins, Roland rdobbins at arbor.net
Tue Dec 18 22:12:37 UTC 2012

On Dec 19, 2012, at 4:37 AM, Vernon Schryver wrote:

> Besides, DoS attacks on DNS servers themselves (as opposed to using DNS servers to attack others) are best handled outside in smart (e.g. sane state table management) application firewalls.  

This seem to be an issue of semantics - I certainly agree that there are better solutions for dealing with DNS DDoS attacks than every-server-for-itself.

[Full disclosure: I work for a vendor of such solutions.]

Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>

	  Luck is the residue of opportunity and design.

		       -- John Milton

More information about the dns-operations mailing list