Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

type of asa to ensure our dns server??

Hi to all

I've a problem to ensure my public dns server, this server is inside my lan and exposed to internet, whit actual firewall we have a lot of problem of dns flooding or dos attack, in fact  when we open dns port and route traffic to dns server our bandwith is saturated.

I thought of something that would limit the number of requests in time by the same ip, reverse rate limit or anyway to ensure dns requests.

what sort of firewall is right for us? asa 5505 is a right choise? or we need something more advanced?

Please help me


type of asa to ensure our dns server??

You'll want to take a look at the traffic and see what is going on since what you are experiencing seems odd. You'll more than likely want to use a firewall and IPS to protect your DNS server. You should also move it to a DMZ.

CreatePlease login to create content