[dns-operations] A lot of CNAME queries for domain ?
Mohamed Lrhazi
ml623 at georgetown.edu
Thu Jul 5 19:49:48 UTC 2012
I searched the previous 15 minutes, found 4000 such queries. Grouped by
client, by first three octets on their IPs... there were 75 such subnets..
so traffic is coming from many sources... unless IPs are made up. These
were the top:
index client_net q_type q_name count percent
1 74.125.186 CNAME georgetown.edu 1298 32.474356
2 74.125.126 CNAME georgetown.edu 467 11.683763
3 67.228.118 CNAME georgetown.edu 423 10.582937
4 208.71.198 CNAME georgetown.edu 197 4.928697
5 64.136.52 CNAME georgetown.edu 179 4.478359
6 67.208.34 CNAME georgetown.edu 106 2.651989
7 208.69.120 CNAME georgetown.edu 93 2.326745
8 208.71.199 CNAME georgetown.edu 92 2.301726
9 207.32.191 CNAME georgetown.edu 87 2.176632
10 70.32.65 CNAME georgetown.edu 84 2.101576
11 64.207.128 CNAME georgetown.edu 64 1.601201
12 69.252.66 CNAME georgetown.edu 61 1.526145
13 64.136.44 CNAME georgetown.edu 55 1.376032
14 199.168.252 CNAME georgetown.edu 48 1.200901
15 68.87.77 CNAME georgetown.edu 43 1.075807
16 208.53.48 CNAME georgetown.edu 40 1.000751
17 174.123.2 CNAME georgetown.edu 38 0.950713
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20120705/21358452/attachment.html>
More information about the dns-operations
mailing list