Explore information related to dns

NTP amplification attack

This article will guide you on steps to mitigate this #NTP amplification attack. An Amplification Attack is any attack where an attacker is able to use an amplification factor to multiply its power. Examples of #amplification #attacks include Smurf Attacks (ICMP amplification), Fraggle Attacks (#UDP amplification), and DNS Amplification.

DNS flood is a type of Distributed Denial of Service (#DDoS) attack in which the attacker targets one or more Domain Name System (#DNS) servers belonging to a given zone, attempting to hamper resolution of resource records of that zone and its sub-zones.

To harden your DNS server:

1. Audit your DNS zones. First things first.

2. Keep your DNS servers up-to-date.

3. Hide BIND version.

4. Restrict Zone Transfers.

5. Disable DNS recursion to prevent DNS poisoning attacks.

6. Use isolated DNS servers.

7. Use a DDOS mitigation provider.

8. Two-Factor Authentication.

Read More



DNS Amplification Attack

This article will guide you on different methods to mitigate DNS amplification attack. Basically, DDoS attacks can really freeze websites or even cause server downtime. 

DNS flood is a type of Distributed Denial of Service (#DDoS) attack in which the attacker targets one or more Domain Name System (DNS) servers belonging to a given zone, attempting to hamper resolution of resource records of that zone and its sub-zones.

A Domain Name Server (#DNS) Amplification attack is a popular form of Distributed Denial of Service (DDoS), in which attackers use publically accessible open DNS servers to flood a target system with DNS response traffic.

1. UDP reflection attacks exploit the fact that UDP is a stateless protocol.

2. An attacker then sends the UDP packet containing the spoofed source IP to an intermediate server. 

3. The server is tricked into sending its UDP response packets to the targeted victim IP rather than back to the attacker's IP address.

Read More



301 redirect dns record

This article will guide you on how to set up 301 redirect DNS record. Basically, we must create the redirects carefully, so that we don't lose the traffic. 

301 redirect #DNS records are the best method that we can implement for achieving a good redirect.

Redirects are not bad for #SEO, but — as with so many things — only if you put them in place correctly. 

1. A bad implementation might cause all kinds of trouble, from loss of PageRank to loss of traffic. 

2. Redirecting pages is a must if you make any changes to your URLs.

3. A 301 redirect is a permanent #redirect that passes full link equity (ranking power) to the redirected page. 301 refers to the HTTP status code for this type of redirect. 

4. In most instances, the 301 redirect is the best method for implementing redirects on a website.

Read More



Cloudflare error 1016 Origin DNS error

This article will guide you on the methods to resolve #Cloudflare error 1016. The main cause of this error is a failed DNS resolution.

Name resolution is the process of converting a host name to an IP address, so a Name Resolution Failure occurs when the Domain Name System (#DNS) used by your computer can't convert website into the relevant IP address.

To resolve Cloudflare error 1016:

1. Verify your Cloudflare DNS settings include an A record that points to a valid IP address that resolves via a DNS #lookup tool.

2. For a #CNAME record pointing to a different domain, ensure that the target domain resolves via a DNS lookup tool.

Read More



How to set rDNS in Windows Name Servers

This article will guide you on how to set #rDNS records in Windows Name servers. rDNS means mapping the address to a #hostname.

Nslookup is an MS-DOS utility that enables a user to look up the IP address of a domain or host on a network. The #nslookup command can also perform a reverse lookup using an IP address to find the domain or host associated with that IP address.

PTR record ( a pointer record ) is the certain type of DNS record that resolves an IP address to a host name. Getting reverse #DNS going is done by finding the PTR records in use by a DNS server. These PTR records will be managed by the company that is in control of the IP address which was assigned to you.

1. A pointer (PTR) record is a type of Domain Name System (DNS) record that resolves an IP address to a domain or host name, unlike an A record which points a domain name to an IP address. 

2. PTR records are used for the reverse DNS lookup. Using the IP address, you can get the associated domain or host name.

3. An A record should exist for every PTR record. 

4. The usage of a reverse DNS setup for a mail server is a good solution. 

5. While in the domain DNS zone the hostname is pointed to an IP address, using the reverse zone allows to point an IP address to a hostname.

Read More



Steps to create SQL server alias

Steps for Deleting an alias using SQL Server Configuration Manager ?
#SQL aliases are used to give a table, or a column in a table, a temporary name. Aliases are often used to make column names more readable. An alias only exists for the duration of the query.
To find my SQL Server #alias name:
Expand SQL Native client #configuration, and you can find a subfolder Alias. By default, we do not have any alias defined for the SQL Server #instance. In the screenshot, we can see it does not see any items for the Alias. Right-click on Aliases and click on New Alias.
1. Take SQL Server Configuration Manager and go to SQL Server Native #Client Configuration, then click Aliases.
2. We can right-click the alias that we want to delete, and then click Delete.
3. A warning will pop up, we can click on Yes to remove the alias. This removes the SQL Server alias.

Read More



Nagios Authentication and Importing Users with AD and LDAP

This article will guide you on how to integrate #Nagios Log Server with Active Directory or #LDAP to allow user authentication and validation with the Nagios Log Server interface.
Currently by default LDAP traffic (without SSL/TLS) is unsigned and unencrypted making it vulnerable to man-in-the-middle attacks and eavesdropping. After the patch or the windows update would be applied, LDAPS must be enabled with Active Directory.
To Set up Active Directory Authentication using LDAP:
1. Enter the LDAP "Server" and "Port" attributes on the Server Overview tab of the LDAP Users page.
2. Enter the proper base for the Active Directory in the "Base DN" attribute.
3. Set the Search Scope.
4. Enter the Username Attribute.
5. Enter the Search Filter.
6. Verify that the settings are correct by clicking the Verify button.

Read More



How to fix Common Virtualmin DNS Problems

This article will guide you on how to tackle #Virtualmin Common #DNS #Errors which occurs when glue #records at the #registrar are not correct. So to fix this, you should use the correct records on the Virtualmin system. You should also ensure that the DNS server #IP addresses are correct.

Read More



Clean up Domain Controller DNS Records with Powershell

This article will guide you on the process to clean up Stale/Dead #DC DNS records with the help of #PowerShell. You can see that it is easy to clean up domain controller records with the help of this method using few Windows PowerShell #commands.

To remove old DNS records from a domain controller, simply Remove #DNS Entries by:

1. Right click a #Zone in DNS console and go to properties, Under Name server tab delete the entries that are related to decommissioned DC.

2. Open DNS Console and Remove the IP of the decommissioned DC that might be present on the #network #adapter.

Read More



Email not appearing in webmail inbox in MailEnable

This article will guide us on steps to fix #Email not appearing in #webmail #inbox in #MailEnable which occurs when newer versions of MailEnable do not rely on re-indexing of folders on access. 

Read More



OpenVPN dns leak How to fix it

This article will guide you on the steps to fix #OpenVPN DNS leak issue. 

A DNS leak occurs when the browser sends a #DNS request directly, thus ignoring the #VPN.  Although the link will seem encrypted or anonymous, the ISP will be able to track your online.

Read More