I'm getting flooded with DNS request for several domains that I no longer host. The domain owner has not updated the DNS servers at his registrar.
I'd like to filter any request for these domains at the firewall. If a specific rule for blocking DNS traffic exists that would be great.
Can this be done with the ASL 3.2.18 firewall ?
Something like this?:
iptables -A INPUT -m string --algo bm --string "baddomain1.com" -j DROP
Firewall rule to block DNS requests by domain ?
- mikeshinn
- Atomicorp Staff - Site Admin
- Posts: 4149
- Joined: Thu Feb 07, 2008 7:49 pm
- Location: Chantilly, VA
Re: Firewall rule to block DNS requests by domain ?
You could definitely try that, you'd want to limit it to port 53 of course.
Michael Shinn
Atomicorp - Security For Everyone
Atomicorp - Security For Everyone