THE GAME HAS CHANGED

Introducing Infoblox Universal DDI ManagementTM

Watch the launch to discover the new era of management for critical network services. Watch Now

Advanced DNS Protection

Reply

RFC 8482 implementation - minimizing Query Type ANY
Auteri
New Member
Posts: 1

‎03-26-2019 02:22 AM

10269     3

Hello,

 

A new RFC (rfc 8482) tries to minimize the DDOS risk of the ANY query.

Is it currently possible to change the ANY query return value or block the query altogether? Or do we need to post a feature request with Infoblox.

 

Reference:

https://tools.ietf.org/html/rfc8482

https://blog.cloudflare.com/rfc8482-saying-goodbye-to-any/

 

Cesare

 

Labels:
Reply
0 Kudos

Re: RFC 8482 implementation - minimizing Query Type ANY
PAdair
New Member
Posts: 5

‎03-28-2019 04:47 PM

10269     3

Advanced DNS Protection allows you to block or rate limit use of the ANY query in multiple ways.

 

  1. By default rule 130400100 under DNS Amplification and Reflection will rate limit at 5 reflection/amplifcation queries per second.  Type ANY queries will trigger this rate limit.  This rule can be tuned more aggresively if needed.
  2. Rule 130502800 under DNS Message types can be used to block Type ANY queries.
  3. Type ANY queries can be blocked and rate limited by fqdn or overall using custom ADP rules as well.

 

1 person found this solution to be helpful.
Reply

Re: RFC 8482 implementation - minimizing Query Type ANY
vaibhav-mehta
New Member
Posts: 1

‎04-10-2024 06:34 AM

10270     3

so there is no other way then buying a new license for ADP to block Any queries ?

Reply
0 Kudos
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Recommended for You

Latest Annoucements