[ratelimits] Rate Limit Question

Vernon Schryver vjs at rhyolite.com
Thu Aug 29 14:41:58 UTC 2013


> From: "Manson, John" <John.Manson at mail.house.gov>

> Does this log entry indicate that all 254 addresses in the 66.73.20
> subnet are limited?
>
> Aug 28 12:34:44 local at mercury named[8047]: [ID 873579 daemon.info] limit responses to 66.73.20.0/24 for cpc.grijalva.house.gov IN A  (35fb75e1)

That log entry says that DNS responses to all of the 256 address from
66.73.20.0 through 66.73.20.255 were being dropped or "slipped" by the
DNS server.

Whether or not some of those addresses such as 66.73.20.0 and
66.73.20.255 are not assigned to hosts is irrelevant to the DNS
server and in general cannot be known to the DNS server.


Vernon Schryver    vjs at rhyolite.com


More information about the ratelimits mailing list