Open DNS Resolver reflection attack Mitigation

Joe Maimon jmaimon at ttec.com
Fri Jun 8 19:09:04 UTC 2012


Is there any publicly available rate limiting for BIND?

How about host-based IDS that can be used to trigger rtbh or iptables?

Google and Level3 manage to run open resolvers, why cant I?

Joe




More information about the NANOG mailing list