Re: DOS attack on DNs
From: Thomas Lee (tfl_at_psp.co.uk)
Date: 10/03/04
- Next message: Roger Smith: "Problems with WWW"
- Previous message: Thomas Lee: "Re: DNS Server and multiple NICS"
- In reply to: Vicky Sam]: "DOS attack on DNs"
- Next in thread: Andrew Hodgson: "Re: DOS attack on DNs"
- Messages sorted by: [ date ] [ thread ]
Date: Sun, 3 Oct 2004 11:09:07 +0100
In message <eWUR4QSqEHA.3896@TK2MSFTNGP15.phx.gbl>, "Vicky Sam]"
<vicky_samant@hotmail.com> writes
>Hi Everybody,
>
>I need one help that if there is dos attack on my live dns server then what
>step should I take.
This will very much depend on the nature of the attack. Some steps to
take include:
1. Hardening the server and it's tcp/ip stack. See the Windows security
guides on line for more details.
2. Ensure your external router and firewalls are setup to get rid of the
worst of the traffic.
3. Add IPSec filters on your DNS server to drop any traffic you
determine is malicous. Dropping a few IP addresses, or address ranges
may make this problem go away.
4. Work with your upstream ISP to stop the traffic before it gets to
you.
5. Consider involving law enforcemen.
> Please explain me in details or there is any documents
>or site where I will get all details about troubleshooting on DNS with all
>senarios.
http://www.google.com/search?q=denial+of+service+attack++DNS&start=0&star
t=0&ie=utf-8&oe=utf-8&client=firefox-a&rls=org.mozilla:en-US:official
or
will give some details of known attacks.
-- Thomas Lee doctordns@gmail.com
- Next message: Roger Smith: "Problems with WWW"
- Previous message: Thomas Lee: "Re: DNS Server and multiple NICS"
- In reply to: Vicky Sam]: "DOS attack on DNs"
- Next in thread: Andrew Hodgson: "Re: DOS attack on DNs"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
