Skylar.W – Marbled Fennec Networks

🐾 Putting the bark behind your bytes! 🐾

Name Server Attack

Posted by Skylar.W Posted on October 21, 2024

Posted in Issues, Network

UPDATE OCT 22ND 2024@0950EST:
The attack is still ongoing and our team will continue to drop queries for ‘cloudflare.com’ for the time being. We will perform another check around 1500EST.

UPDATE OCT 21ST 2024@2250EST:
It appears that the attack is largely focused on various regions in Brazil. While our team cannot ID the source of the attack, the destination for the requested data is pretty localized to that region. As of this time, the attackers seem to be settling for bogus TXT lookups against cloudflare.com and our team will begin dropping traffic with the hex for that domain until sometime tomorrow morning. This may break things on a temp basis as DNS queries for their domain will not resolve for users hitting our servers.

—
We are seeing what looks like a DNS attack at the moment, appears to have started around 1345EST until it died off near 1420EST, and then picked up again around 1700EST and it still ongoing at the time of posting. The majority of the request are TXT records for only a handful of domains. Our team will be keeping an eye on this.

We have already stepped in to significantly lower the responses per second allowed and widen the tracking bitmask to /24 for v4 and /58 for v6. These lower limits on responses will remain in effect until six hours after the attack ends in order to limit our impact without dropping our service entirely.

While the RPS is not super high, it is out of the norm for our name servers and we are reacting to it in order to limit the outgoing traffic amount and keep our name servers accessible.

Playing around with DNS again..

Posted by Skylar.W Posted on October 20, 2024

Posted in Network

Our volunteers have been playing around with our name servers again and have setup the TLDs ‘.fennec’, ‘.dragon’ and ‘.avali’ as alternatives for goofing around with. If you are using our name servers directly, you should be able to visit “http:// www.avali” to see a mirror of this website or http://opennic.avali/ to see FurrIX NIC page for the project that they are working on.

Keep in mind that at this time, their TLDs are not part of the OpenNIC’s network and they are not currently accepting new registrations until they get an easier to manage frontend setup for working with zone files and others parts of their domain setup.

fenfox.run has been decom’d

Posted by Skylar.W Posted on October 18, 2024

Posted in Core, Operations

When this project first started, we borrowed a domain from Skylar’s personal domains to use for all of the routing and support gear. Somewhere around the one year mark, we were supposed to return the domain ‘fenfox.run’ back to her for use on her website. We didn’t make the original date for return and worked out a deal to keep the domain in operation for another three to four months as a stop gap measure and have finally moved everything over to ‘furrix.zone’ and seem to have no issues so far.

As of today, ‘fenfox.run’ is no longer used anywhere within MFN or FurrIX.

(C) 2023-2024, Marbled Fennec Networks (FurrIX) and our various members.
-------------------------------------------------------------------------
Marbled Fennec Networks is the operator of FurrIX (https://www.furrix.zone)
FurrIX, a Furry virtual Internet Exchange
-------------------------------------------------------------------------
The service(s) provided by Marbled Fennec Networks, are to be understood as use at your own risk. The project makes no warranty or other expression of our network being fit for any use case. All service(s) are provided as best effort, as is and without cost to approved end users and our project members.
If you feel as if our service(s) fall short of your expectations or are otherwise causing you issues, your remedy is to stop use of our service(s) and close your account with us.
-------------------------------------------------------------------------
DNS services have been moved into our project since July 29th, 2024!
-------------------------------------------------------------------------
Thank you to all of our volunteer techs and project members; you guys make this worth doing! Every single one of y'all has been a huge help over the years.
-------------------------------------------------------------------------
Network abuse complaints or concerns? Email us at 'abuse at marbledfennec dot net' If making an abuse report, please allow us five days to process your email! In your email, please include the IPs (both v4 and v6) involved to make it quicker for us to know which member needs to be spoken with. Thank you.
-------------------------------------------------------------------------
Network Data Moved as of Aug 4th, 2024 IN: 1.78TB --|-- OUT: 2.87TB --|-- RATIO: 0.62 --|-- SRC: NMS | Data stats include internal usage such as automated backups, control data and other data along side transit used by project members and end users; as such, details may be skewed a little!
-------------------------------------------------------------------------
Project Lifetime --> MFN/FurrIX has been in some sort of operational status since its unofficial start around July 2009. The current and live version officially started around May of 2021 and continues to be operational through 2024. There have been some very close calls over the past year or two, but we are fighting to hang in there!

Design by ThemesDNA.com

Author: Skylar.W

Name Server Attack

Playing around with DNS again..

fenfox.run has been decom’d

Recent Posts

Recent Comments

Archives

Categories