[nsd-users] Request Rate Limiting

[A. Schulze]

Michael A. Peters:

> Could we eliminate the DDoS threat by just turning off UDP?
>
> Recursive servers I understand probably have to keep accepting them,  
> but authoritative servers are only intended for recursive servers to  
> query, so would it be safe to just drop port 53 UDP requests?
good question.
I'll relay the question to dnsop at ietf.org...

Andreas