?
Solved

DNS Spoofing attack prevention

Posted on 2013-01-01
2
Medium Priority
?
934 Views
Last Modified: 2013-01-01
Can any one explain to me on how to configure two things for Windows Server 2008 R2 DNS Server.

(1) .Configure SSL/TLS servers to only use TLS 1.1 or TLS 1.2 if supported.
Configure SSL/TLS servers to only support cipher suites that do not use block ciphers. Apply patches if available. Note that additional configuration may be required after the installation of the MS12-006 security update in order to enable the split-record countermeasure.

(2) Server
Spoofed Request Amplification DDoS

For Item (2) is related to DNS Server. How to configure DNS Server to prevent spoofed attack?

Regards,
Zaw Tun Naing
0
Comment
Question by:mikenus
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 22

Accepted Solution

by:
Rick Hobbs earned 750 total points
ID: 38734186
For question 1, step by step is here:

http://www.adminhorror.com/2011/10/enable-tls-11-and-tls-12-on-windows_1853.html

For question 2, if you don't have recursion disabled, disable it!
0
 
LVL 28

Assisted Solution

by:asavener
asavener earned 750 total points
ID: 38734952
For 2, you just have to limit the addresses that are allowed to access the DNS server.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have put this article together as i needed to get all the information that might be available already into one general document that could be referenced once without searching the Internet for the different pieces. I have had a few issues where…
Citrix XenApp, Internet Explorer 11 set to Enterprise Mode and using central hosted sites.xml file.
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question