9–10 May 2015
Okura Hotel
Europe/Amsterdam timezone

Update on experimental BIND features to rate-limit recursive queries

10 May 2015, 11:45
15m
Heian I/II (Okura Hotel)

Heian I/II

Okura Hotel

Ferdinand Bolstraat 333 1072 LH Amsterdam
Lightning Presentations

Speaker

Ms Cathy Almond (Internet Systems Consortium)

Description

Unusual DNS query patterns have been the focus of many recent talks that have examined the sources, targets and intent of this traffic, as well as the impact seen by authoritative servers and resolvers alike. Over the past year ISC has been trialling experimental recursive client rate limiting techniques in BIND to limit impact of this unwanted traffic on both servers and DNS clients. This talk recaps some of the problems that can be encountered and then reviews of the effectiveness of the experimental techniques, including results from live production environments.

Primary authors

Ms Cathy Almond (Internet Systems Consortium) victoria risk (isc)

Presentation materials