Please help with dns problem

eyeatnet · January 29, 2020, 5:34pm

Hello, I am Amer from Iraq

I have a problem in dns
Please Help
Dnsbox was installed some time ago
Now he is exposed to attacks by users and I do not know who caused these attacks. I contacted the company and informed them of what was happening. The company informed me that attacks are happening on my dnsbox server.

I want you to help with entering the IP address

To dnsbox

This is a graph about my network

Each user has a subscription and a special package and it has an Ip address. I want to enter the users’ address into dnsbox

This I do on the first gateway server

/ip dns
set cache-max-ttl=1d cache-size=4096KiB max-concurrent-queries=9999
max-concurrent-tcp-sessions=9999 servers=8.8.8.8,8.8.4.4

/ip firewall nat
add action=dst-nat chain=dstnat comment=“DNS Redirection to UDP” dst-port=53
in-interface=!ether10-DnsBox1 protocol=udp to-addresses=10.10.10.10
to-ports=53
add action=dst-nat chain=dstnat comment=“DNS Redirection to TCP” dst-port=53
in-interface=!ether10-DnsBox1 protocol=tcp to-addresses=10.10.10.10
to-ports=53
add action=masquerade chain=srcnat comment=“TO-DNSBOX - do NOT disable”
src-address=10.10.10.0/24
add action=masquerade chain=srcnat comment=TO-PPPOE src-address=10.10.12.0/24

This I do on the second server after the cache
PPPoE Server

/ip dns
set servers=8.8.8.8,8.8.4.4

/ip firewall nat
add action=dst-nat chain=dstnat comment=“DNS Redirection to UDP” dst-port=53
protocol=udp to-addresses=10.10.10.10 to-ports=53
add action=dst-nat chain=dstnat comment=“DNS Redirection to TCP” dst-port=53
protocol=tcp to-addresses=10.10.10.10 to-ports=53
add action=masquerade chain=srcnat comment=Light src-address=172.17.0.0/16
add action=masquerade chain=srcnat comment=Economy src-address=172.18.0.0/16
add action=masquerade chain=srcnat comment=Standard src-address=172.19.0.0/16
add action=masquerade chain=srcnat comment=Active src-address=172.20.0.0/16
add action=masquerade chain=srcnat comment=Business src-address=172.21.0.0/16
add action=masquerade chain=srcnat comment=Super src-address=172.22.0.0/16
add action=masquerade chain=srcnat comment=Free src-address=172.23.0.0/16
add action=masquerade chain=srcnat comment=NETWORK src-address=10.20.1.0/24

noelsmith · February 3, 2020, 2:27pm

Hello, I am Amer from Iraq

I have a problem in dns
Please Help
Dnsbox was installed some time ago
Now he is exposed to attacks by users and I do not know who caused these attacks. I contacted the company and informed them of what was happening. The company informed me that attacks are happening on my dnsbox server.

I want you to help with entering the IP address

To dnsbox

This is a graph about my network

Each user has a subscription and a special package and it has an Ip address. I want to enter the users’ address into dnsbox

This I do on the first gateway server

/ip dns
set cache-max-ttl=1d cache-size=4096KiB max-concurrent-queries=9999
max-concurrent-tcp-sessions=9999 servers=8.8.8.8,8.8.4.4

/ip firewall nat
add action=dst-nat chain=dstnat comment=“DNS Redirection to UDP” dst-port=53
in-interface=!ether10-DnsBox1 protocol=udp to-addresses=10.10.10.10
to-ports=53
add action=dst-nat chain=dstnat comment=“DNS Redirection to TCP” dst-port=53
in-interface=!ether10-DnsBox1 protocol=tcp to-addresses=10.10.10.10
to-ports=53
add action=masquerade chain=srcnat comment=“TO-DNSBOX - do NOT disable”
src-address=10.10.10.0/24
add action=masquerade chain=srcnat comment=TO-PPPOE src-address=10.10.12.0/24

This I do on the second server after the cache
PPPoE Server

/ip dns
set servers=8.8.8.8,8.8.4.4

/ip firewall nat
add action=dst-nat chain=dstnat comment=“DNS Redirection to UDP” dst-port=53
protocol=udp to-addresses=10.10.10.10 to-ports=53
add action=dst-nat chain=dstnat comment=“DNS Redirection to TCP” dst-port=53
protocol=tcp to-addresses=10.10.10.10 to-ports=53
add action=masquerade chain=srcnat comment=Light src-address=172.17.0.0/16
add action=masquerade chain=srcnat comment=Economy src-address=172.18.0.0/16
add action=masquerade chain=srcnat comment=Standard src-address=172.19.0.0/16
add action=masquerade chain=srcnat comment=Active src-address=172.20.0.0/16
add action=masquerade chain=srcnat comment=Business src-address=172.21.0.0/16
add action=masquerade chain=srcnat comment=Super src-address=172.22.0.0/16
add action=masquerade chain=srcnat comment=Free src-address=172.23.0.0/16
add action=masquerade chain=srcnat comment=NETWORK src-address=10.20.1.0/24

Hi buddy, did you get any way to this? Facing similar issue as of now (present date of posting).

Regards,
Noel Smith