[dns-operations] solutions for DDoS mitigation of DNS

Paul Vixie paul at redbarn.org
Thu Apr 2 04:55:26 UTC 2020


On Thursday, 2 April 2020 03:51:05 UTC Tessa Plum wrote:
> Hello Paul
> 
> We were under some attack like UDP flood to the authority servers, there
> were a lot of UDP requests flooding to the servers. The traffic size was
> about 20Gbps last time as I have said in last message. The clients seem
> using spoofed IP addresses.
> 
> Thanks.
> Tessa

turn on DNS RRL. many name servers have it; none have it as their default.

-- 
Paul




More information about the dns-operations mailing list