Tom Celica wrote:
> I keep having somebody attempting to Update our DNS Records. We do not know
> who this is and an NSLOOKUP tells us they are from a DHCP Pool owned by
> verizon.net. Calling Verszon is useless.
>
> Periodically our Linux Box needs to be rebooted due to lockups probably
> caused by these failed update attempts.
>
> Question: How do I block these update attempts.
>
> Non-authoritative answer:
> 29.236.156.141.in-addr.arpa name =
> pool-141-156-236-29.res.east.verizon.net.
>
>

You block them by configuring bind to ignore them. If you have bind
configured properly, then no harm done.

You could IPTABLE DNS requests from that IP range. Since it's dial-up,
it's a fair bet that they use Verizon's RADIUS-supplied DNS settings and
those DNS machines are probably not even close in address space (or one
would hope). The concept being that since they are dial-up, the
supplied DNS will do the look-up and isn't blocked.

However, I doubt that these requests are causing your machine to
lock-up. If they are, then something is very very wrong with your
version of bind. I'd suspect that something else is causing your
machine to behave this way.




--

WWJD? JWRTFM
Rot13 for email address: yvfgf @ ehqa.pbz