THE GAME HAS CHANGED

Introducing Infoblox Universal DDI ManagementTM

Watch the launch to discover the new era of management for critical network services. Watch Now

Advanced DNS Protection

Reply

DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks

Techie
Posts: 3
7124     0

Hello,

 

Is somebody explain me about the topic title. DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks. As is known, There is no any rule on ADP that are called as the mentioned attack type in title. If we wnat to take an action for the attacks. How to blocked or monitor the attacks with similar rule on Infoblox ADP.

 

Thank you in advance.

Re: DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks

[ Edited ]
New Member
Posts: 2
7125     0

@aTurkofAcunmcdvoice wrote:

Hello,

 

Is somebody explain me about the topic title. DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks. As is known, There is no any rule on ADP that are called as the mentioned attack type in title. If we wnat to take an action for the attacks. How to blocked or monitor the attacks with similar rule on Infoblox ADP.

 

Thank you in advance.


DNS Label-Prepending and -Substitution DDoS Attacks, often referred to as "Water Torture" attacks, involve manipulating DNS queries to flood a server with requests, typically by altering domain labels.

Re: DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks

New Member
Posts: 1
7125     0

@aTurkofAcun wrote:

Hello,

 

Is somebody explain me about the topic title. DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks. As is known, There is no any rule on ADP that are called as the mentioned attack type in title. If we wnat to take an action for the attacks. How to blocked or monitor the attacks with similar rule on Infoblox ADP.

 

Thank you in advance.


Hello,

DNS Label-Prepending and Substitution (‘Water Torture’) DDoS attacks involve sending a high volume of DNS queries with random, non-existent subdomains to overwhelm DNS servers.

To block or monitor these attacks on Infoblox ADP, you can create custom threat protection rules. Here’s a brief outline:

  1. Create Custom Rules: Define rules to detect high volumes of queries for non-existent subdomains.

  2. Apply Mitigation Actions: Configure actions such as logging events and dropping problematic packets.

  3. Monitor and Report: Use Infoblox’s reporting features to monitor and analyze attack patterns.

Would you like more detailed steps on setting up these rules?


Best Regards,
James Henry

Showing results for 
Search instead for 
Did you mean: 

Recommended for You

Businesses are investing heavily into securing company resources from cyber-attacks form cybercrimin