IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Networking Forum / Disable recursion?
Post #330,552
by scoenye
7/30/10 10:19:01 PM
Reply
New Disable recursion?
If the only use is to resolve your domain, then disable recursive lookups for the internet at large. You can always make an exception for local hosts (assuming the addresses can be distinguished.)

Exact details depend on OS and DNS server version of course.
Post #330,559
by static
7/31/10 8:22:02 AM
Reply
New I did that.
Or at least I think I did. I could see in tcpdump that they were getting "DNS Refused", but that wasn't enough to tell them to reconfigure their resolver. Using iptables to tell it the host isn't there seems to be working rather better.

I've taken to emailing the IP range owner (these email addresses *must* work: the IP registries get upset when they don't!). This also seems to stop things. On the most recent ones, I've asked them to also tell whoever they got the address.

Slowly but surely.

If I get bored of this, I *will* be setting up *. to resolve to some black hole.

Wade.
Q:Is it proper to eat cheeseburgers with your fingers?
A:No, the fingers should be eaten separately.
Post #330,568
by drook
Picture of drook
7/31/10 12:50:49 PM
7/31/10 12:51:09 PM
Reply
New Right, like I said ...
Cure mental image, annnnnnd ... you're welcome.
--

Drew
Expand Edited by drook July 31, 2010, 12:51:09 PM EDT
Expand All History
     DNS help. - (static) - (13) - July 24, 2010, 09:16:40 AM EDT
         There is a good reference... - (folkert) - July 24, 2010, 09:44:42 AM EDT
         resolve all the knob asks for to a porn site -NT - (boxley) - (6) - July 24, 2010, 07:22:34 PM EDT
             A few more ideas (if you've got bandwidth to spare) - (drook) - (5) - July 25, 2010, 08:26:47 AM EDT
                 :-D -NT - (Another Scott) - July 25, 2010, 08:44:41 AM EDT
                 Great idea... - (static) - (3) - July 25, 2010, 09:17:56 AM EDT
                     * -> goatse.cx -NT - (drook) - (2) - July 25, 2010, 09:39:55 AM EDT
                         Ow. - (static) - (1) - July 25, 2010, 10:01:15 AM EDT
                             Great name for a college band: Dastardly Resolutions - (drook) - July 25, 2010, 10:11:18 AM EDT
         Update. - (static) - (4) - July 28, 2010, 07:26:45 AM EDT
             Grr. - (static) - (3) - July 29, 2010, 05:46:06 AM EDT
                 Disable recursion? - (scoenye) - (2) - July 30, 2010, 10:19:01 PM EDT
                     I did that. - (static) - (1) - July 31, 2010, 08:22:02 AM EDT
                         Right, like I said ... - (drook) - July 31, 2010, 12:51:09 PM EDT

Let's defend ourselves with a bunch of convertible tanks!
109 ms