diff options
Diffstat (limited to 'network/dnsflood/README')
-rw-r--r-- | network/dnsflood/README | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/network/dnsflood/README b/network/dnsflood/README new file mode 100644 index 0000000000..be66b71d11 --- /dev/null +++ b/network/dnsflood/README @@ -0,0 +1,11 @@ +DNS Flood Detector was developed to detect abusive usage levels on high traffic +nameservers and to enable quick response in halting the use of one's nameserver +to facilitate spam. + +DNS Flood Detector uses libpcap (in non-promiscuous mode) to monitor incoming +dns queries to a nameserver. The tool may be run in one of two modes, either +daemon mode or "bindsnap" mode. In daemon mode, the tool will alarm via syslog. +In bindsnap mode, the user is able to get near-real-time stats on usage to aid +in more detailed troubleshooting. + +A /etc/rc.d/rc.dnsflood daemon control script is aditionally included. |