- [Show page]
- [Old revisions]
- [[unknown link type]]
- []
Differences
This shows you the differences between two versions of the page.
| Next revision | Previous revision | ||
|
linux:dns [2013/06/06 02:36] admin created |
linux:dns [2018/10/19 14:50] (current) admin [Druhy krok k uspechu] |
||
|---|---|---|---|
| Line 29: | Line 29: | ||
| Toto byl prvni krok k uspechu. | Toto byl prvni krok k uspechu. | ||
| - | ===== Druhy krok k uspechu ===== | + | ====== Druhy krok k uspechu ====== |
| Priznaky utoku: | Priznaky utoku: | ||
| * log je uplne plny hlasek: | * log je uplne plny hlasek: | ||
| Line 93: | Line 93: | ||
| RETURN all -- 0.0.0.0/0 0.0.0.0/0 | RETURN all -- 0.0.0.0/0 0.0.0.0/0 | ||
| </code> | </code> | ||
| + | |||
| + | |||
| + | ===== Bind9 notify ===== | ||
| + | |||
| + | Bind DNS sends notify to all name servers expect itself and master nameserver in SOA. | ||
| + | |||
| + | notify yes; | ||
| + | sends notify to all name servers in RR (except itself and SOA master) | ||
| + | |||
| + | notify yes; | ||
| + | also-notify { x.x.x.x; y.y.y.y; }; | ||
| + | sends notify to x.x.x.x, y.y.y.y and all name servers in RR (except itself and SOA master). | ||
| + | |||
| + | notify explicit; | ||
| + | also-notify { x.x.x.x; y.y.y.y; }; | ||
| + | sends notify to just x.x.x.x, y.y.y.y | ||
| + | |||
| + | |||
| + | **Upozorneni:** | ||
| + | takto nastaveny bind+fail2ban muze zpusobit DoS vlastniho serveru. UDP packety mohou prichazet s podvrzenou zdrojovou IP. | ||
linux/dns.1370478996.txt.gz · Last modified: 2013/06/06 02:36 by admin