Method to allow port 53 while blocking many countries?
Posted: 23 Feb 2021, 22:39
Hello and I hope everyone is healthy and safe.
I manage a server which gets a lot of malicious hits from outside US. I use CC_DENY which works well. However, as mail is being sent out and oftentimes some foreign recipients do a dns check for dns on the server, it is also blocking that which degrades service.
What must I do to continue to use my CC_DENY list whilst also allowing foreign dns queries in even if from a CC_DENY country.
Thank you!
I manage a server which gets a lot of malicious hits from outside US. I use CC_DENY which works well. However, as mail is being sent out and oftentimes some foreign recipients do a dns check for dns on the server, it is also blocking that which degrades service.
What must I do to continue to use my CC_DENY list whilst also allowing foreign dns queries in even if from a CC_DENY country.
Thank you!