DNS outages

Good morning,

Does anyone have any updates they can share on the outage
that has been happening since sometime yesterday? They don't seem to
have any sort of explanation or status page (aside from the note on
their homepage). Is there anything we can do to help? It's certainly
impacting reachability to a tremendous number of domains.



Thanks for the heads up. I just sent an email out to my companies staff to keep an eye on our own customers if they
are noticing any issues.

Times like this, makes you curious what kind of infrastructure has? How does one protect against DDOS?

this is not rocket science....srsly...


as per usual, vzb's website is a poor excuse for a marketting tool (or
sales tool, or information gathering tool.. ugh) but, bullet #2 is one
option (that I think actually was offered at one point in

is 3250/month cheaper than sla payouts from 3 days of running outages
each year or so?


It depends :slight_smile: Maybe the SLA excludes outages caused by DDOS? What's the one time cost of a lawyer writing an exclusion in a SLA compared to the
monhly recuring cost of paying an ISP for DDOS protection? For example, how much does VZB's? own internet network SLA pay for DDOS caused
ouages if you don't pay the extra $3250/month for VZB's DDOS protection service?

Maybe future ISP bills will look like this

Internet access 1000/Mbps $1/month
Internet modem rental $2.95/month
Inside wiring protection $6/month
Outside fiber cut protection $99/month
Loss of power protection $995/month
DDOS attack protection $3,250/month
Route hijacking protection $3,995/month
Operator error protection $5,995/month
Natural hazards protection $6,325/month
Unnatural hazards protection $7,750/month
Collision and Comprehensive $9,500/month
   - includes asteroid extinction events if anyone is left to collect

Is it less expensive to pay your ISP for SLA insurance, or to buy business interruption insurance from an insurance company?

On the other hand, what types of outages should be covered by the cost of Internet access, and what things do you pay extra for an ISP to respond?
If ISP's think of DDOS as a revenue opportunity, why should ISPs do anything to avoid millions of Bots launching DDOS attacks? Fewer bots might reduce the need for customers to buy DDOS protection services.

Has it been confirmed that's outage was due to a DDOS?

Well they are saying it's DDOS themselves. Straight from their website.

3:30 PM, Saturday, November,13th - On Friday, November 12th we were hit
by a distributed denial of service attack (ddos). We are actively
working to mitigate the attack and restore services as soon as
possible. Every available resource has been deployed to address this
malicious attack. If you are having trouble accessing your webmail,
please try the below alternative webmail access points in order:,,
Please note, only one of these 3 webmail access points will work for
your specific email address. If you require further
assistance please contact customer service at 1888.734.4783. We will
update you as soon as we have more information.

* Brandon Kim:

Times like this, makes you curious what kind of infrastructure has? How does one protect against DDOS?

You can outsource your DNS, but you better retain a server locally on
your network, so that you suffer less from that particular shared

My company uses for DNS hosting and we were hit by its troubles
this weekend. I know there are companies that offer backup DNS services,
but those seem to be aimed at companies that host their own DNS, which we're
not really interested in doing at this time. Are there mainstream DNS
hosting companies that allow customers to use a second company for their
backup DNS? Does allow this?

From the POV of someone who has never used an outsourced DNS service...

Is there a reason you couldn't run a hidden master or two that replicates to slaves at one or more outsourced DNS hosts?

Possibly, although does not allow this. Maybe other DNS
hosting companies do...

Anyone else get spammed from someone at Afilias?

I won't name any names yet. Based on the content of the email it would appear it was related to this thread.

Nice way to ensure I never use Afilias.

Anyone else get spammed from someone at Afilias?

Yes, I think you were Cc:ed on the message sent to me.

I find it odd that this type of advertising works. I would expect
actual victims to confuse it with extortion. ("I have heard that you
were under attack and suffered an outage. For a small fee, we can
ensure that this never happens again.")

By the way, does anybody know how Afilias prices in-protocol
reflective attacks which fail to make the zone unavailable? 8-/