Got a tweet to say my web server was down this morning, the VPS shows the server as down so I hit the power and it was back up quickly.
I had a dig thought the logs (I'm not a *nix expert so bear with me) the /var/log/messages were full of these...
Aug 7 03:51:52 MY-HOSTNAME named: error (unexpected RCODE REFUSED) resolving 'lalka.com.ru/ANY/IN': 18.104.22.168#53
Looks like some kind of attack? What's do I need to change or add to my BIND server to mitigate this?