Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11How to protect DNS server against hackers
Our network is usually protected by a firewall software. But my predecessor put both the primary / secondary DNS server, responsible for dealing with domains outside the network world that are protected by firewalls. Is there a best way to protect DNS servers from unwanted guests? ( Gather from the Internet ).
There have been a number of, but not many, ways of addressing the threat of DNS servers against hackers. You should set the DNS server after an existing firewall and give them IP addresses. When allowing port 53 to pass through the firewall, make sure that both TCP and UDP must be passed. I learned this 'bloody' lesson when I first set up DNS servers behind a firewall. Many interrupt issues in the Domain Name System (DNS) solution appear continuously until TCP and UDP are passed through the firewall at port 53.
If the DNS server is behind the current firewall, you should place them in a subnet other than the subnet of a set of servers or devices already on the network. You should also set up an access control list on the switch of the DNS server subnet. This does not allow traffic to be transferred to the gateway on the network, but only through an Internet connection. Another option is to set the server on a DMZ connection. Some firewalls allow this option to be used, but additional network cards must be installed if the firewall does not have a secondary port available.
Or, you can set the DNS server after a private firewall that is not connected to the network. Thus, if a firewall or no DNS server is compromised, your network is not at risk, because the connection is not direct. If you install a third DNS server (assuming only 2 DNS servers were available at that time), you can perform other protection options. In this configuration, both DNS servers are secondary DNS systems. DNS information on the server cannot be changed directly. Non-authentication changes only last until the secondary server receives an update from the newly installed primary server. For successful execution, the primary DNS server does not provide a generic IP address and is configured to contact only the secondary DNS server.
The DNS software you are using may allow some other options. For example, Bind 9 supports the component that calls the viewer, preventing the DNS server from coming out of the domain system solution on domain servers that are not configured to provide live information. That is, this is not a common source of DNS servers anyone can use. Extended traffic can be 'disrupted' using DNS servers for domains they don't serve.
Marvin FryYou should read it
- What is a firewall? General knowledge about Firewall
- Installing, configuring and administering ISA Server 2004 Firewall
- Installing and configuring the 2004 ISA Server Firewall - Chapter 3
- Overview of Windows Server 2008 Firewall with advanced security features (continued part 3)
- The basic advantages of Linux servers and Window servers
- Overview of Windows Server 2008 Firewall with advanced security features
- Balancing download of Exchange 2007 SP1 Hub Transport servers with Windows Network Load Balancing (Part 1)
- FTP security with Firewall ISA 2006 (Part 2)
May be interested
- Hackers Hate These 6 Email Settings! Turn Them On Now!
failing to proactively protect your email can leave an open door that hackers will have a hard time resisting. fortunately, enabling these settings will help keep hackers at bay and won't take long for them to get their way. - NASA servers are hacked by hackersrecently, nasa, the us aeronautics and space agency announced that its servers had been hacked by hackers on october 23.
- The difference between web server and app serveryou have probably seen that the terms web server and app server are often used interchangeably as if they are related to the same thing and also facilitate the website to function properly. but in reality, they are not the same.
- Test knowledge about hackingthis is a short educational questioning package that aims to give you some techniques that hackers use and help you protect your code from attack. you will be provided with the correct answer with detailed explanation after you have completed all the questions.
- Network basics: Part 3 - DNS Servera dns server is a server that contains a database of public ip addresses and hostnames associated with them. in most cases, the dns server is used to resolve or translate those common names into ip addresses as required.
- Steps to configure proxy server settings in Windows 10windows 10 offers the ability to set up a proxy server from the settings app without the need for third-party software. this feature allows you to protect your online privacy while surfing the web.
- The way Hacker uses to remain anonymoushackers use different ways to remain anonymous while hacking, but it must be said that anonymity is completely unthinkable, but hackers can be safe and anonymous to some degree and ensure backwardness. it is very difficult.
- How to Password Protect a Websitetoday's tipsmake will show you how to protect your website with a username and password. the steps to password protect a website will vary depending on where the website is hosted. if you write code on the server or upload files from your computer, you can set a password for your website using the .htaccess file. with a website builder like squarespace or wix, you can set up passwords for each area of your site through the admin console. if you use a more advanced hosting solution that allows user accounts, contact your current web host for instructions.
- World hackers in Chinathe wall street journal has revealed some of the chinese hackers' underground world - the focus of hackers in the world today ...
- Secure the server with Scapy - Part 1in this article we will show you how to use the scapy tool to protect your servers.
7 ways to keep the search history unnoticed
How to protect your network from Skype
How secure is surfing the web anonymously?
Six ways to prevent data leakage
IT consulting: Secure PC with personal firewall
Guide to controlling device security built-in in Windows (Part 1)