• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Port 53 DNS DDOS

KrazyBob

Regular Pleskian
My Firebox X8000 is showing line after kine after line of three servers out of over 100

xxx.xxx.xxx.xxx 208.67.222.222 dns/udp 1-Trusted 0-External denial of service attack, drop this packet.

I cannot find any setting in Plesk that will.l stop this. Running lsof -i :53 shows me that every IP assigned to the server is pinging out. Webalizer appears to also be running, as if doing a hostname lookup. I did not set this in Webalizer and don't know how to check or turn it off.

How do I stop my irewall from rejecting DNS outbound as a ddos when it is legitimate traffic? If Webalizer is ausing this, how and where do I turn it off. I recall that Webalizer has a setting just as AWStats does for full hostname lookup.
 
Back
Top