Mitigating DNS Denial of Service Attacks
- DNS generally uses the connectionless User Datagram Protocol (UDP) as its transport.
- Many autonomous systems allow source-spoofed packets to enter their network.
- There is no shortage of Open Resolvers on the Internet.