On Mon, Sep 17, 2012 at 3:28 PM, Paul Sierks <psierks@sierkstech.net> wrote:
Sorry for any confusion, of which I'm sure I'm about to add to. But this particular box doesn't have an internal network, just one interface on the internet. Also I think a lot of the problem in my case is the allowed IP addresses change on a regular basis, quite often.

Then I think we're back at Gille's original response -- don't do it! :) There are many better public DNS servers out there, such as Google/s 8.8.8.8 and 8.8.4.4.

Failing that, mitigate the risk with an iptables filter to prevent your host from being the source of the DDOS.

Sean

--
Sean Walberg <sean@ertw.com>    http://ertw.com/