What are these Google IPs hammering on my DNS server?

• Previous message (by thread): What are these Google IPs hammering on my DNS server?
• Next message (by thread): What are these Google IPs hammering on my DNS server?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Just set TC=1 for those clients.  If you get queries over TCP then they where not spoofed.  If they are using DNS COOKIE (RFC 7873) you can send back BADCOOKIE to the initial (client cookie only) UDP request with your server cookie.  Identifying real DNS clients has been possible for years now.  It’s not hard.

I could do that but with the other clues I think it's unlikely they're 
spoofed and far more likely they're real traffic from clueless users.

Regards,
John Levine, johnl at taugh.com, Primary Perpetrator of "The Internet for Dummies",
Please consider the environment before reading this e-mail. https://jl.ly

• Previous message (by thread): What are these Google IPs hammering on my DNS server?
• Next message (by thread): What are these Google IPs hammering on my DNS server?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]