Brent wrote in in response to ChrisM's diary about helping us help you. A look at a 2nd graph showed that these queries were for A records. When I see an anomaly like this (things that make me say "hmmm") I go investigate. In this case, it was a flood of queries for hostnames/domains our DNS servers weren't authoritative for (and, of course, they're set up to refuse recursive queries). |
donald 206 Posts Jul 19th 2011 |
Thread locked Subscribe |
Jul 19th 2011 1 decade ago |
In some recent research I have been doing on looking at monitoring cloudy solutions espcially IaaS the performance monitoring API's where probably one of the best way to natively and in a scalable fashion try and do some basic security monitoring and I know in my day to day job I use our performance monitoring systems all the time to check for gremlins running around the network.
|
Anonymous |
Quote |
Jul 20th 2011 1 decade ago |
Sign Up for Free or Log In to start participating in the conversation!