How To Disable DNS Recursion On Your Dedicated Server
Recursive DNS queries occur when information is requested from a DNS server that does not "own" a domain to query subsequent DNS servers until DNS information is found an answer is returned.
Servers with recursive DNS queries enabled are vulnerable to fake requests that can flood the server with the results of each query, overwhelming the server with a volume of traffic too large to be processed, causing performance degradation. This is know as a DOS/DDOS (Denial of Service/Distributed Denial of Service) Attack.
To disable DNS Recursion on your dedicated server follow the steps below.
Using Plesk
Plesk 12.X
- Log in to Plesk as the Admin user.
- In the Server Management section, click on Tools & Settings.
- Under General Settings click DNS Template Settings.
- Click the DNS Recursion tab.
- Select the Allow for local requests only option.
- Click Set
Plesk 11.X
- Log in to Plesk as the Admin user.
- In the Server Management section, click on Tools & Settings.
- Under General Settings click DNS Template Settings.
- Click DNS Recursion.
- Select the Allow for local requests only option.
- Click Set.
Plesk 9.X
- Log in to Plesk as the Admin user.
- Click on Settings.
- Under the DNS area click on DNS Recursion Settings.
- Select the Allow for local requests only option.
- Click Set.
Using the Command Line
This option is only to be used if Plesk is not running on your server.
- Log in to your server as Administrator
- Open an elevated command prompt (Run as Administrator).
- Type the following command into the command prompt and press enter
- dnscmd /Config /NoRecursion 1
Article ID: 1858, Created: April 22, 2013 at 1:42 PM, Modified: July 11, 2016 at 3:30 PM