8 /^.*named.*client \([0-9]\+\.[0-9]\+\.[0-9]\+\.[0-9]\+\)#.*:.*view inet.*NS\/IN.*denied.*$/ s//\1/p
9 ' /var/log/daemon.log |
12 if ! ipset -qT ddos-evil-dns "$addr"; then
17 case "$dns_victims" in
20 echo 'DNS DDOS victim addresses:'
21 ipset -N ddos-evil-dns iphash >/dev/null 2>&1 || :
22 for addr in $dns_victims; do
24 ipset -A ddos-evil-dns "$addr" || :