The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Old Domains - Getting Hit On My Server

Discussion in 'General Discussion' started by cjmwebdesigns, Sep 23, 2015.

  1. cjmwebdesigns

    cjmwebdesigns Well-Known Member

    Joined:
    Dec 20, 2003
    Messages:
    72
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    New Jersey
    cPanel Access Level:
    Root Administrator
    Twitter:
    Over the course of time I have had accounts cancelled and it seems those domains have not expired, however they are still pointing to my server.

    I am seeing thousands of hits per day and I would think this has to do something... how do I stop this suspect routing and the continuous hits?

    Sep 23 01:20:14 server named[20729]: client 210.182.125.29#29028: view external: query (cache) 'domainhere.com/A/IN' denied

    The IPs are different and there are again thousands of these for some of my old clients who must still let their domains route to my name servers if they have yet to expire.

    I have had a high server load today, not sure if this is the cause, so any help would be appreciated.
     
  2. redesignunit

    redesignunit Member

    Joined:
    Sep 24, 2015
    Messages:
    16
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    DNS servers being hit by some other DNS servers? Add the following under options:
    blog.solidshellsecurity.com/2012/11/29/http-servers-pt-2-python/
    blog.solidshellsecurity.com/2014/01/09/script-linux-server-create-binddns-records-template-script/

    recursion no;
    additional-from-auth no;
    additional-from-cache no;

    This is a cPanel example:
    blog.solidshellsecurity.com/2012/06/12/force-cpanel-run-backup/

    view "external" {
    /* This view will contain zones you want to serve only to "external" clients
    * that have addresses that are not on your directly attached LAN interface subnets:
    */
    recursion no;
    additional-from-auth no;
    additional-from-cache no;

    Example 2:
    blog.solidshellsecurity.com/2014/08/18/recover-public-folders-office-365exchange-2013/

    // global options apply to external clients
    options {
    recursion no;
    additional-from-auth no;
    additional-from-cache no;
    };

    view "local" in {
    // view options enable recursion only for local clients
    match-clients { 172.16.45.80/23; 192.168.12.0/24; 127.0.0.1/8; ::1; };
    recursion yes;
    additional-from-auth yes;
    additional-from-cache yes;

    zone "." in {
    type hint;
    file "/etc/bind/db.root";
    };

    // put definitions for zones like "localhost" and "127.in-addr.arpa" here
    }

    // put definitions for real authoritative zones here.

    Hope it will help you.
     
    #2 redesignunit, Sep 24, 2015
    Last edited by a moderator: Sep 24, 2015
  3. madmanmachines

    madmanmachines Well-Known Member

    Joined:
    Nov 28, 2014
    Messages:
    94
    Likes Received:
    3
    Trophy Points:
    8
    cPanel Access Level:
    Root Administrator
    Hi,

    I would also add a redirect specifically for the domains at '/home/.htaccess' to minimize the effects.
     
Loading...

Share This Page