Firewall rule to block DNS requests by domain ?

Customer support forums for Atomic Protector (formerly Atomic Secured Linux). There is no such thing as a bad question here as long as it pertains to using Atomic Protector. Newbies feel free to get help getting started or asking questions that may be obvious. Regular users are asked to be gentle. :-)
Post Reply
dkopecek
Forum User
Forum User
Posts: 8
Joined: Tue Oct 26, 2010 12:29 pm

Firewall rule to block DNS requests by domain ?

Unread post by dkopecek »

I'm getting flooded with DNS request for several domains that I no longer host. The domain owner has not updated the DNS servers at his registrar.
I'd like to filter any request for these domains at the firewall. If a specific rule for blocking DNS traffic exists that would be great.

Can this be done with the ASL 3.2.18 firewall ?

Something like this?:
iptables -A INPUT -m string --algo bm --string "baddomain1.com" -j DROP
Top
User avatar
mikeshinn
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 4149
Joined: Thu Feb 07, 2008 7:49 pm
Location: Chantilly, VA

Re: Firewall rule to block DNS requests by domain ?

Unread post by mikeshinn »

You could definitely try that, you'd want to limit it to port 53 of course.
Top
Post Reply

Return to “Atomic Protector (formerly ASL)”