nanog mailing list archives

RE: DNS - connection limit (without any extra hardware)

From: "Geo." <geoincidents () nls net>
Date: Fri, 8 Dec 2006 11:52:52 -0500

Actually, reading your reply (which is the same as my own, pretty much), I
figure the guy asked a question and he has a real problem. Assuming he
doesn't want to clean them up is not nice of us.


Infected machines (bots) will cause a lot more than just DNS issues. Issues
like this have a way of getting worse all by themselves if not addressed.

Anyway, to play nice.. how about using a router to dampen traffic much like
icmp dampening? Would it be possible to do DNS dampening?

Geo.

Current thread:

DNS - connection limit (without any extra hardware) Luke (Dec 08)
- RE: DNS - connection limit (without any extra hardware) Geo. (Dec 08)
  - RE: DNS - connection limit (without any extra hardware) Gadi Evron (Dec 08)
    - RE: DNS - connection limit (without any extra hardware) Geo. (Dec 08)
    - Re: DNS - connection limit (without any extra hardware) Joe Abley (Dec 08)
    - Re: DNS - connection limit (without any extra hardware) Daniel Golding (Dec 10)
    - Re: DNS - connection limit (without any extra hardware) Matt Ghali (Dec 10)
    - RE: DNS - connection limit (without any extra hardware) Matt Ghali (Dec 08)
  - Re: DNS - connection limit (without any extra hardware) Petri Helenius (Dec 08)
    - Re: DNS - connection limit (without any extra hardware) Gadi Evron (Dec 08)
    - Re: DNS - connection limit (without any extra hardware) Aaron Glenn (Dec 08)
    - Re: DNS - connection limit (without any extra hardware) Petri Helenius (Dec 08)
    - repair zombie machines (was: DNS - connection limit) Jim Popovitch (Dec 08)
    - Re: repair zombie machines (was: DNS - connection limit) william(at)elan.net (Dec 09)

(Thread continues...)