dns-operations AT lists.opennicproject.org
Subject: Dns-operations mailing list
List archive
Re: [opennic-dns-operations] Using iptables and hashlimits to throttle DNS abuse traffic
Chronological Thread
- From: Jeff Taylor <shdwdrgn AT sourpuss.net>
- To: dns-operations AT lists.opennicproject.org
- Subject: Re: [opennic-dns-operations] Using iptables and hashlimits to throttle DNS abuse traffic
- Date: Fri, 24 Aug 2012 08:52:44 -0600
Hmm I forgot about that part... The shorewall rules do not allow subnet
blocking, they only block by the individual IP.
On 08/23/2012 11:39 PM, Brian Koontz wrote:
>
> One big difference is that ddos.pl operates on the entire IP, while
> hashlimits allow multiple IPs from the same subnet (specified by
> hashlimit-srcmask) to be grouped together for filtering purposes.
>
> --Brian
>
- [opennic-dns-operations] Using iptables and hashlimits to throttle DNS abuse traffic, Brian Koontz, 08/23/2012
- Re: [opennic-dns-operations] Using iptables and hashlimits to throttle DNS abuse traffic, Jeff Taylor, 08/23/2012
- Re: [opennic-dns-operations] Using iptables and hashlimits to throttle DNS abuse traffic, David Norman, 08/23/2012
- Re: [opennic-dns-operations] Using iptables and hashlimits to throttle DNS abuse traffic, Jeff Taylor, 08/23/2012
- Re: [opennic-dns-operations] Using iptables and hashlimits to throttle DNS abuse traffic, Brian Koontz, 08/24/2012
- Re: [opennic-dns-operations] Using iptables and hashlimits to throttle DNS abuse traffic, Jeff Taylor, 08/24/2012
Archive powered by MHonArc 2.6.19.