Re: [44net] SYN Flood, etc.

27 Jun 2017


      Rob,
...
...
/I'll be closing TCP/53 to the Internet - NOW. /
You need to close UDP/53 as well!  It is widely abused for DDoS amplification,
you really should not offer DNS service on internet unless you have modern software
to do rate limiting etc.
...I NEVER had udp/53 opened, as I do not offer DNS to the Internet, 
only you guys.
In addition, my firewall was blocking the SYN Floods; and I also rate 
limit all open ports on my ISP and AMPRNet.
It appears theses packets are coming from a 44 IP address anyway...
:-)
Thanks,
-KB3VWG

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

Re: [44net] SYN Flood, etc.