Subject: Re: HELP!!!
From: Jason Jeremias (jason@jeremias.net)
Date: Mon Mar 25 2002 - 11:25:29 AKST
Well the best place to start is to have your upstream provider block
the ip's you've listed below from connecting to your name server on port
53. Thats a good place to start. Have them do it at there gateway
router, so it never gets to you.
-Jason
jsaam@mcc-cpa.com wrote:
>I think I'm being targeted as some sort of DoS DNS attack... how can I stop
>this madness? I have a full log of entries like the ones listed below:
>
>Mar 24 19:57:31 ns1 named[783]: client 64.136.24.42#53: error sending
>response:
>network unreachable
>Mar 24 19:57:32 ns1 named[783]: client 64.136.24.41#53: error sending
>response:
>network unreachable
>Mar 24 19:57:33 ns1 named[783]: client 64.136.24.41#53: error sending
>response:
>network unreachable
>Mar 24 19:57:35 ns1 named[783]: client 64.136.24.42#53: error sending
>response:
>network unreachable
>Mar 24 19:57:37 ns1 named[783]: client 64.136.24.41#53: error sending
>response:
>network unreachable
>Mar 24 19:57:38 ns1 named[783]: client 64.136.24.42#53: error sending
>response:
>network unreachable
>Mar 24 19:57:40 ns1 named[783]: client 64.136.24.41#53: error sending
>response:
>network unreachable
>Mar 24 19:57:41 ns1 named[783]: client 64.136.24.42#53: error sending
>response:
>network unreachable
>Mar 24 19:57:43 ns1 named[783]: client 64.136.24.42#53: error sending
>response:
>network unreachable
>Mar 24 19:57:45 ns1 named[783]: client 64.136.24.41#53: error sending
>response:
>network unreachable
>
>HELP!!
>
>Jon
>
>
>
>
>
This archive was generated by hypermail 2a23 : Mon Mar 25 2002 - 11:32:24 AKST