Skip to Content.
Sympa Menu

discuss - Re: [opennic-discuss] Annoying DoS

discuss AT

Subject: Discuss mailing list

List archive

Re: [opennic-discuss] Annoying DoS

Chronological Thread 
  • From: Brian Koontz <brian AT>
  • To: discuss AT
  • Subject: Re: [opennic-discuss] Annoying DoS
  • Date: Wed, 17 Oct 2012 18:47:47 -0500

On Thu, Oct 18, 2012 at 06:51:52AM +1000, Martin C wrote:
> I know it was mentioned before on this list, but I can't remember if any
> IP addresses were mentioned. Anyway, I was watching the logs the other
> day and noticed one IP doing a lot of lookups for the same domain over
> and over again (

Martin, in addition to Jeff's excellent script that Alex
mentioned, you might also try these iptables rules:


They have been very effective on a couple of servers (including mine)
in reducing server load. Of course, they do nothing for upstream
traffic that is still hammering your server, but at some point the ISP
has to take some responsibility for monitoring their own upstream


OpenNIC (the sequel) co-founder and wikimaster
IRC: channel #opennic

Attachment: pgpWI072nG0GZ.pgp
Description: PGP signature

Archive powered by MHonArc 2.6.19.

Top of Page