Date: Tue, 3 Apr 2001 09:53:07 -0700 (PDT) From: Tom Samplonius <tom@sdf.com> To: Marcel Lemmen <marcel@support.nl> Cc: David Rhodus <sdrhodus@wildcatblue.com>, freebsd-isp@FreeBSD.ORG Subject: Re: Named Keep crashing. Message-ID: <Pine.BSF.4.05.10104030950150.9515-100000@misery.sdf.com> In-Reply-To: <Pine.LNX.4.21.0104031305100.17683-100000@unit11.support.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 3 Apr 2001, Marcel Lemmen wrote: > It seems this is a heavily-used machine, since the icmp-responce bandwidth > limit is exceeded. Try to increase this limit: > sysctl -w net.inet.icmp.icmplim=500 > > This should prevent named to crash. No. ICMP port unreachable messages are being sent out because named is dead, but clients keep sending requests. Unless you want your machine to be used as part of a DDoS, you should keep the ICMP limiting in place. Named is crashing because there are several versions with a known remote crash bug, and versions with a remote exploit. Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.05.10104030950150.9515-100000>