- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-06-2019 09:43 AM
Hello,
Is somebody explain me about the topic title. DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks. As is known, There is no any rule on ADP that are called as the mentioned attack type in title. If we wnat to take an action for the attacks. How to blocked or monitor the attacks with similar rule on Infoblox ADP.
Thank you in advance.
Re: DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks
[ Edited ]- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-06-2024 07:51 AM - edited 10-06-2024 07:57 AM
@aTurkofAcunmcdvoice wrote:Hello,
Is somebody explain me about the topic title. DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks. As is known, There is no any rule on ADP that are called as the mentioned attack type in title. If we wnat to take an action for the attacks. How to blocked or monitor the attacks with similar rule on Infoblox ADP.
Thank you in advance.
DNS Label-Prepending and -Substitution DDoS Attacks, often referred to as "Water Torture" attacks, involve manipulating DNS queries to flood a server with requests, typically by altering domain labels.
Re: DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2 weeks ago
@aTurkofAcun wrote:Hello,
Is somebody explain me about the topic title. DNS Label-Prepending and -Substitution ('Water Torture') DDoS Attacks. As is known, There is no any rule on ADP that are called as the mentioned attack type in title. If we wnat to take an action for the attacks. How to blocked or monitor the attacks with similar rule on Infoblox ADP.
Thank you in advance.
Hello,
DNS Label-Prepending and Substitution (‘Water Torture’) DDoS attacks involve sending a high volume of DNS queries with random, non-existent subdomains to overwhelm DNS servers.
To block or monitor these attacks on Infoblox ADP, you can create custom threat protection rules. Here’s a brief outline:
Create Custom Rules: Define rules to detect high volumes of queries for non-existent subdomains.
Apply Mitigation Actions: Configure actions such as logging events and dropping problematic packets.
Monitor and Report: Use Infoblox’s reporting features to monitor and analyze attack patterns.
Would you like more detailed steps on setting up these rules?
Best Regards,
James Henry