Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Advertise on LowEndTalk.com
Safe to allow/ignore nameservers/DNS traffic in the firewall?
New on LowEndTalk? Please read our 'Community Rules' by clicking on it in the right menu!

Safe to allow/ignore nameservers/DNS traffic in the firewall?

postcdpostcd Member

Hello,

i got nameserver block in /etc/resolv.conf

opennicproject.org

nameserver 50.116.23.211

nameserver 209.141.53.57

nameserver 50.116.40.226

nameserver 199.195.249.174

Google corp.

nameserver 8.8.8.8

nameserver 8.8.4.4

opendns.com by Cisco

nameserver 208.67.222.222

nameserver 208.67.220.220

Is it safe to allow,ignore any excessive traffic from these IPs in firewall?

Or how you would set IPtables?

InternetLifeForum.com - hosting, webmaster forum

Comments

  • keep them coming.

    lowendhelpdesk

    Ask everything

    Thanked by 1seriesn

    Let's bet which dot-name will collapse first ;)

  • iptables -F will fix 'em

  • FuslFusl Member

    nameserver Name server IP address

    Internet address of a name server that the resolver should query, either an IPv4 address (in dot notation), or an IPv6 address in colon (and possibly dot) notation as per RFC 2373. Up to MAXNS (currently 3, see <resolv.h>) name servers may be listed, one per keyword. If there are multiple servers, the resolver library queries them in the order listed. If no nameserver entries are present, the default is to use the name server on the local machine. (The algorithm used is to try a name server, and if the query times out, try the next, until out of name servers, then repeat trying all the name servers until a maximum number of retries are made.)

    me | I'm running a large amount of OpenNIC's uncensored, open and democratic alternative Tier2 DNS resolvers. Now with Anycast! | We also provide a lot of locations and providers on our Looking Glass

  • @Fusl you wanted to say that banning/whitelisting nameservers IPs in firewall canot help in any way?

    InternetLifeForum.com - hosting, webmaster forum

  • @postcd said:
    @Fusl you wanted to say that banning/whitelisting nameservers IPs in firewall canot help in any way?

    Up to 3 nameservers may be listed in resolv, the OP has waaaaay over that.

    Thanked by 1Fusl

    Devops Consultant | GitHub

Sign In or Register to comment.