1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

Port 53 DNS DDOS

Discussion in 'Plesk 9.x for Linux Issues, Fixes, How-To' started by KrazyBob, Mar 25, 2012.

  1. KrazyBob

    KrazyBob Regular Pleskian

    27
    40%
    Joined:
    Nov 28, 2006
    Messages:
    142
    Likes Received:
    0
    My Firebox X8000 is showing line after kine after line of three servers out of over 100

    xxx.xxx.xxx.xxx 208.67.222.222 dns/udp 1-Trusted 0-External denial of service attack, drop this packet.

    I cannot find any setting in Plesk that will.l stop this. Running lsof -i :53 shows me that every IP assigned to the server is pinging out. Webalizer appears to also be running, as if doing a hostname lookup. I did not set this in Webalizer and don't know how to check or turn it off.

    How do I stop my irewall from rejecting DNS outbound as a ddos when it is legitimate traffic? If Webalizer is ausing this, how and where do I turn it off. I recall that Webalizer has a setting just as AWStats does for full hostname lookup.
     
  2. KrazyBob

    KrazyBob Regular Pleskian

    27
    40%
    Joined:
    Nov 28, 2006
    Messages:
    142
    Likes Received:
    0
    This issue continues and I don't know how to fix it. Any help would humbly be accepted.
     
Loading...