Hi, this monowall (1.8.1) is under a massive DNS scan. I determined sometimes up to 50 scans per second. The issue I have is that this scan produces significant uplink traffic on the relatively slow the ADSL uplink. Sometime it got congests. This was resulting in buffer overflow messages in the log file. Q: Is there any danger for monowall ? Is there anything we can do?
Thanks for you help Jakob
Log of this scan: 09:05:44.686179 WAN 147.237.72.182, port 59203 217.193.x.x, port 53 UDP 09:05:41.764087 WAN 147.237.72.77, port 56501 217.193.x.x, port 53 UDP 09:05:39.067656 WAN 147.237.72.36, port 1878 217.193.x.x, port 53 UDP 09:05:34.644158 WAN 147.237.72.215, port 49345 217.193.x.x, port 53 UDP 09:05:31.605097 WAN 147.237.72.228, port 42830 217.193.x.x, port 53 UDP 09:05:31.099089 WAN 147.237.72.58, port 59761 217.193.x.x, port 53 UDP 09:05:29.730911 WAN 147.237.72.59, port 46621 217.193.x.x, port 53 UDP 09:05:24.682200 WAN 147.237.72.147, port 57283 217.193.x.x, port 53 UDP 09:05:22.832662 WAN 147.237.72.9, port 36979 217.193.x.x, port 53 UDP 09:05:12.290071 WAN 147.237.72.253, port 35844 217.193.x.x, port 53 UDP 09:05:12.107540 WAN 147.237.72.97, port 6656 217.193.x.x, port 53 UDP 09:05:07.141826 WAN 147.237.72.71, port 57737 217.193.x.x, port 53 UDP 09:05:01.422551 WAN 147.237.72.214, port 58256 217.193.x.x, port 53 UDP 09:05:00.401463 WAN 147.237.72.13, port 29356 217.193.x.x, port 53 UDP 09:05:00.134915 WAN 147.237.72.244, port 30678 217.193.x.x, port 53 UDP
|