It appears our DNS server is accepting recursive DNS queries that are being abused to create denial of service attacks

Hello,

We have been notified that our DNS server is accepting recursive DNS queries that are being abused to create denial of service attack.  I am not seeing anything obvious in my DNSDHCP tool on how to resolve this.

We are running SLES 15sp4 and OES 2023.0 (we are planning on updating this in a couple weeks).

Temporarily our service provider has placed some acl on their system to block this, but asked that we fix it.

Thanks for your help.

Gene

Tags:

Parents Reply
  • 0 in reply to   

    That was the solution.  I wasn't on a specific server (I didn't know these settings were server level).

    So that I am clear on what I need to do:

    1)  I need to add my client and server IPs in to the "Control List, Allow Recursion" list.

    2) Change the Advanced tab, recursion option to NO.

    Is that correct?

    Thank you for your help!

Children