大佬教程收集整理的这篇文章主要介绍了linux – 我的DNS服务器正在推动20mbps,为什么?,大佬教程大佬觉得挺不错的,现在分享给大家,也给大家做个参考。
似乎有人使用我的DNS服务器作为放大攻击的一部分,但是我不知道如何.
配置在下面.
// BBB.bBB.bBB.bBB = ns2.mydomain.com ip address options { listen-on port 53 { any; }; // listen-on-v6 port 53 { ::1; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-transfer { BBB.bBB.bBB.bBB; }; allow-query-cache { BBB.bBB.bBB.bBB; }; allow-query { any; }; allow-recursion { none; }; empty-zones-enable no; forWARDers { 8.8.8.8; 8.8.4.4; }; fetch-glue no; recursion no; dnssec-enable yes; dnssec-validation yes; /* Path to ISC DLV key */ bindkeys-file "/etc/named.iscdlv.key"; managed-keys-directory "/var/named/dynamic"; }; logging { chAnnel default_debug { file "data/named.run"; severity dynamic; }; }; zone "." IN { type hint; file "named.ca"; }; zone "mydomain.com" IN { type master; file "zones/mydomain.com"; allow-transfer { BBB.bBB.bBB.bBB; localhost; }; };
鉴于这种配置,我不应该回答任何关于区域的查询我不在本地托管吗?这个服务器是几个域的SOA,但不用于查看我的其他服务器(每个人都针对OpenDNS或GooglE).我在这里有什么指示错误,还是我忘了?我的日志(63MB)充满了这个:
client 58.215.173.155#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 58.215.173.155#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 58.215.173.155#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 58.215.173.155#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 58.215.173.155#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 58.215.173.155#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 218.93.206.228#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 218.93.206.228#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 218.93.206.228#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 218.93.206.228#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 218.93.206.228#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 218.93.206.228#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 50.19.220.154#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 50.19.220.154#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 50.19.220.154#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 50.19.220.154#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 50.19.220.154#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 50.19.220.154#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 123.207.161.124#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 123.207.161.124#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 123.207.161.124#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 123.207.161.124#4444: query (cachE) 'cpsc.gov/ANY/IN' denied client 123.207.161.124#4444: query (cachE) 'cpsc.gov/ANY/IN' denied
以上是大佬教程为你收集整理的linux – 我的DNS服务器正在推动20mbps,为什么?全部内容,希望文章能够帮你解决linux – 我的DNS服务器正在推动20mbps,为什么?所遇到的程序开发问题。
如果觉得大佬教程网站内容还不错,欢迎将大佬教程推荐给程序员好友。
本图文内容来源于网友网络收集整理提供,作为学习参考使用,版权属于原作者。
如您有任何意见或建议可联系处理。小编QQ:384754419,请注明来意。