From Security Weekly WikiJump to navigationJump to search
https://www.flashpoint-intel.com/recommended-ddos-attack-mitigation-strategies/ - ''One such mitigation strategy is to use an Anycast DNS provider. This would enable an organization to maintain control of its own DNS servers while using the same management methods and processes. The only difference is that Anycast DNS providers would block all inbound traffic to the organization’s DNS servers and only allow incoming connections from the provider’s systems. The provider will perform a periodic zone transfer for the organization’s domain records and then publish the records from the provider’s DNS servers, which are “Anycasted” and hosted in multiple locations around the world.''