• Domains
  • Web Hosting
  • WordPress Hosting
  • Reseller Hosting
  • Cloud VPS
  • Dedicated Servers
  • Domains
  • Web Hosting
  • WordPress Hosting
  • Reseller Hosting
  • Cloud VPS
  • Dedicated Servers
home/Knowledge Base/Dedicated Servers/Basic Security/Disable Recursive DNS (Linux / Windows)
Popular Search:Dedicated Server, CentOS, Web Hosting

Disable Recursive DNS (Linux / Windows)

45 views 0 November 26, 2019 aklwebhost

DNS is used to translate hostnames into IP addresses. When DNS servers are misconfigured, they can be used to conduct DDOS attacks using your dedicated server. We recommend that all public DNS servers are configured to not permit recursive DNS queries. This configuration will still allow DNS for your domain names to work properly, but will prevent abuse.

On Windows machines, you can disable recursive DNS:

  1. Open ‘Server Manager’
  2. Expand Roles -> DNS Server -> DNS -> (Your Server’s Name)
  3. Right click on your server name, choose Properties
  4. On the ‘Advanced’ tab, select ‘Disable recursion (also disables forwarders)’
  5. Click OK

On Linux machines, there are a few common DNS servers:

BIND:

Open your BIND configuration file
In the ‘options’ section, make sure you have ‘recursion no;’ and ‘additional-from-cache no;’
Restart BIND after making any changes

DNSMasq:

Unfortunately, there is not a straight forward way to disable this within DNSMasq. You would either need to modify the DNSMasq configuration so that it no longer listens on public IP addresses, or firewall off UDP port 53 to all hosts except your desired ones.

If for some reason you cannot make the necessary changes and you are not hosting your own DNS, we would suggest that you firewall off all incoming UDP port 53 traffic.

Tags:Disable Recursive DNS (Linux / Windows)

Was this helpful?

Yes  No
Related Articles
  • Securing SSH on Ubuntu 14.04
  • Setup ConfigServer Security and Firewall (CSF) on CentOS 7
  • Securing SNMP (Linux / Windows)
  • Securing NTP (Linux Only)
  • Enabling and basic configuration of the firewall settings (Linux / Ubuntu)
  • Disabling SSDP (Linux / Windows)
Leave A Comment Cancel reply

Basic Security
  • Disable Recursive DNS (Linux / Windows)
  • Securing SSH on Ubuntu 14.04
  • Setup ConfigServer Security and Firewall (CSF) on CentOS 7
  • Securing SNMP (Linux / Windows)
  • Securing NTP (Linux Only)
  • Enabling and basic configuration of the firewall settings (Linux / Ubuntu)
View All 8  
Popular Articles
  • Using StrongSwan for IPSec VPN on CentOS 7
  • Disabling SSDP (Linux / Windows)
  • Can I pay by Western Union?
  • Can a Coupon Code Discount Be Carried Forward While I Upgrade My VPS Account
  • Can I pay multiple due invoices using a single transaction?
KB Categories
  • Billing
  • Cloud Hosting
  • CMS Hosting
  • cPanel/WHM Control Panel Guide
  • Dedicated Servers
    • AMD Opteron 6272
    • Arch
    • Backup Storage
    • Bandwidth
    • Basic Security
    • BSD
    • CentOS
    • Containers
    • CoreOS
    • DDoS Protection
    • Debian
    • Dedicated Server Control Panel
    • Intel Core i5 3550
    • Intel Core i5 4570
    • Intel Core i7 3770
    • Intel Core i7 4770
    • Intel Xeon E3 1230 V3
    • Intel Xeon E3 1245 V2
    • IP Space
    • Linux Guides
    • Minecraft
    • Networking
    • Server Apps
    • Server Troubleshooting
    • Ubuntu
    • Windows Guides
    • Windows Server 2008
    • Windows Server 2012
  • Domain Names
  • Email Support Documentation
    • Setup IMAP or POP
    • User Features – How To
    • Webmail – How To
  • FTP (File Transfer Protocol
    • CuteFTP Guide
    • FileZilla Guide
  • Game Servers
  • MySQL and MariaDB
  • Node.js
  • Plesk Web Hosting Guide
  • VPS Server
  • Web Servers

  Changing the Default SSH Port (Linux / Ubuntu / Debian)

Disabling SSDP (Linux / Windows)  

  • Privacy Policy
  • Terms of Use
  • © 2022 AKLWEB HOST LLC, All Rights Reserved.

Popular Search:Dedicated Server, CentOS, Web Hosting