[ratelimits] Whitelist ratelimit

Gary E. Miller gem at rellim.com
Thu Dec 6 00:26:55 UTC 2012

Yo Ratelimits!

Newbie here.  I read the last two month archives, but still not
finding the answer to my question.

I just found the ratelimit patches this AM and it helped me stop a 90Mbps 
DoS in its tracks.  Thanks for that.  I can hardly wait until the
patch is in the bind tarball.

My problem is that a local SpammAssasin instance is also generating
a lot of DNS qps and sometimes gets limited.  I know that the SLIP
will kick the valid requests to TCP, but is there a simple way
to just whitelist some local IPs?

On the flip side, I am seeing a few frequent victim IPs in the
DNS requests.  They come and go freqeuently so I get a bit of
window-shading.  Anyway to blacklist a range to do the SLIP thing?

In any case, thanks again, saved me big time already.

Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97701
	gem at rellim.com  Tel:+1(541)382-8588
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
URL: <http://lists.redbarn.org/pipermail/ratelimits/attachments/20121205/4d57ac54/attachment.pgp>

More information about the ratelimits mailing list