Open DNS resolver problem
Options
I noticed on a Zywall 110 many sessions on port 53 from outside, i think it is a DDOS attack, how is this possible? I am not running a DNS from the Wan connection I hope? I checked it with this link: https://www.openresolver.nl/
Where can I make changes on the zywall to make sure DNS from outside is not accessible? In the past this issue was also on the old DSL modems: https://support.aa.net.uk/Stopping_Open_DNS_-_ZyXEL_P660R-D1
Where can I make changes on the zywall to make sure DNS from outside is not accessible? In the past this issue was also on the old DSL modems: https://support.aa.net.uk/Stopping_Open_DNS_-_ZyXEL_P660R-D1
0
Accepted Solution
-
@Fender
In default, the DNS service should be denied from outside by firewall.
or can you go to security policy and configure Wan to Zywall, DNS, Deny.
You can go to Monitor>Log>Press Show Filter>Select the DNS on Service field>Press Search to see if there is any log and action related with DNS service
Charlie5
All Replies
-
Unless you allow from WAN to Zywall then port 53 is not allowed from the out side.0
-
@Fender
In default, the DNS service should be denied from outside by firewall.
or can you go to security policy and configure Wan to Zywall, DNS, Deny.
You can go to Monitor>Log>Press Show Filter>Select the DNS on Service field>Press Search to see if there is any log and action related with DNS service
Charlie5 -
Well ofcourse, such rule I would never make, but how it is still showing as an open resolver?0
-
@Zyxel_Charlie
I made the rule you suggested and it is blocking now and don't get the openresolver error anymore!
Very strange that the Zywall is not blocking it by default in this matter!
There is only one rule from Wan to Zywall, and that is my own fixed wan-ip address to the Zywall in thic case to have full access from outside. All the other (and default Wan_to_Device) rules I always delete because in don't need the VPN stuff.
0
Categories
- All Categories
- 383 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 75 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 887 Nebula FAQ
- 415 Security FAQ
- 231 Switch FAQ
- 201 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight