Reply

DNS DDoS Attack

New Member
Posts: 1
2784     0

Do you know how to block all DNS requests that do not correspond to any DNS record on Public DNS ?

Re: DNS DDoS Attack

Superuser
Posts: 22
2784     0

I know this is an old post, but I am curious what your intentions were. There is a standard DNS response code called "NXDOMAIN" (non-existent domain) that indicates this name is "not found" (think of it like the HTTP 404 code). If you want to, you can configured Infoblox ADP (Advanced DNS Protection) to not pass on anything that has a NXDOMAIN response. However, I am not sure what you are accomplishing here.

 

To the clients, they will ask for xyz.example.com (does not exist), and the response they will typically get is NXDOMAIN, and you can configured a custom response such as NODATA or something else. But the end result is the same, the client does not get an answer.

 

Perhaps you are interested in limiting who can query the DNS server? For example, who can ask your DNS server to look up xyz.example.com in the first place?

Re: DNS DDoS Attack

[ Edited ]
New Member
Posts: 1
2785     0

The attacker overwhelms DNS servers with a massive volume of requests, causing them to become overloaded and unable to process legitimate queries. NCEdCloud  This can disrupt the ability of users to access websites or services.

Showing results for 
Search instead for 
Did you mean: 

Recommended for You