Menu
What's new
By:
Filters Better Search

DNS-rebind attack detected: farm.plista.com. etc...??

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

H

Howard_inGA

Senior Member
So the router is suddenly (since October 1) showing a lot of these system log entries from different sources.

Oct 10 01:48:10 dnsmasq[6357]: possible DNS-rebind attack detected: farm.plista.com
Oct 10 02:51:54 dnsmasq[6357]: possible DNS-rebind attack detected: gixel.gnetwork.me
Oct 6 14:08:21 dnsmasq[10313]: possible DNS-rebind attack detected: cdn.livefyre.com
Oct 6 20:10:27 dnsmasq[10313]: possible DNS-rebind attack detected: ib.beintoo.com

There are about 30 entries for each of these sources since the 1st. Do I need to do anything since the attacks were detected, and the router is rock solid and very fast?
Any help or advice would be appreciated...
 
Do you have DNS rebind protection enabled while using a third-party DNS server? For example, I use Cloudflare for Families (malware blocking) and I get those log entries when Cloudflare returns 0.0.0.0 whenever a malicious URL is accessed.
 
jetpack42 said:
Do you have DNS rebind protection enabled while using a third-party DNS server? For example, I use Cloudflare for Families (malware blocking) and I get those log entries when Cloudflare returns 0.0.0.0 whenever a malicious URL is accessed.
Click to expand...
I use DNS Server: 103.86.96.100, 103.86.99.100 (NordVPN’s DNS settings).
I do have rebind protection selected on, so it appears that this combo is stopping bad things?
 
You must log in or register to reply here.

Similar threads

TanyaC
Possible DNS-Rebind attack detected and unresponsive router plus one more
Replies
3
Views
2K
TanyaC
TanyaC
H
Solved DNS Rebind Attack Message For Only Two Domains
Replies
4
Views
2K
Viktor Jaep
Viktor Jaep
J
possible DNS-rebind attack detected
Replies
9
Views
4K
sfx2000
sfx2000
H
NXDOMAIN DNS Results Flagged As "Possible DNS-rebind attack detected" In Log
Replies
5
Views
1K
HarryMuscle
H
CaptnDanLKW
Updated my DNS Settings - DoT implications and DNS Rebind Attack message
2
Replies
20
Views
5K
manup85
manup85
Similar threads
Thread starter Title Forum Replies Date
TanyaC Possible DNS-Rebind attack detected and unresponsive router plus one more Asuswrt-Merlin 3
W Solved [Disregard] DNS Director stopped working on 3004.388.8_4? Asuswrt-Merlin 2
D Solved Openvpn client dns Asuswrt-Merlin 2
S Solved New ISP - WAN Setup - Will not work with custom WAN DNS - dnsmasq.conf Asuswrt-Merlin 1
T Wireguard Client VPN not using DNS Asuswrt-Merlin 14
Preskitt.man DNS Issue?? AX5800 Pro Issue?? Asuswrt-Merlin 2
plapic DNS Director Asuswrt-Merlin 7
P DNS Director - Proprietary? Asuswrt-Merlin 6
r000t Hardcoded Google DNS IPTABLES rule Asuswrt-Merlin 6
Panic Button Wireguard client optional DNS Server setting Asuswrt-Merlin 2

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 747 (members: 26, guests: 721)
Top