knot-resolver icon indicating copy to clipboard operation
knot-resolver copied to clipboard

Published 20 hours ago verified publisher icon CZ-NIC

Rate limits

Open robingroppe opened this issue 2 years ago • 2 comments

Hi, Is it possible to implement response rate limiting (rrl) and possibly recursive client rate limiting (rcrl)?

robingroppe avatar Mar 31 '23 11:03 robingroppe

No, currently we don't have that. Linux iptables/nftables can do such limiting, at least for some use cases.

vcunat avatar Mar 31 '23 11:03 vcunat

There's a blog post describing work in progress on that, in case that's also interesting: https://en.blog.nic.cz/2024/07/15/knot-resolver-6-news-dos-protection-operators-overview/

vcunat avatar Aug 13 '24 14:08 vcunat