Preventing Use of Recursive Nameservers in Reflector Attacks
RFC 5358, “Preventing Use of Recursive Nameservers in Reflector Attacks”, is a Best Current Practice document published in October 2008 by J. Damas, F. Neves. The canonical text is published by the RFC Editor.
Abstract
This document describes ways to prevent the use of default configured recursive nameservers as reflectors in Denial of Service (DoS) attacks. It provides recommended configuration as measures to mitigate the attack. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements.
What “Best Current Practice” means
Documents the IETF community's recommended operational or procedural practice rather than a protocol specification.
The canonical text of RFC 5358 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 5357 A Two-Way Active Measurement Protocol
- RFC 5359 Session Initiation Protocol Service Examples
- RFC 5356 Reliable Server Pooling Policies
- RFC 5360 A Framework for Consent-Based Communications in the Session Initiation Protocol
- RFC 5355 Threats Introduced by Reliable Server Pooling and Requirements for Security in Response to Threats
- RFC 5361 A Document Format for Requesting Consent
- RFC 5354 Aggregate Server Access Protocol and Endpoint Handlespace Redundancy Protocol Parameters
- RFC 5362 The Session Initiation Protocol Pending Additions Event Package