Am 04.11.2015 um 11:22 schrieb Andrew Holway: > The server in question is a Centos 7 based FreeIPA server, OpenVPN > concentrator and DNS server. Can have been a DNS amplification attack. https://www.us-cert.gov/ncas/alerts/TA13-088A https://blog.cloudflare.com/deep-inside-a-dns-amplification-ddos-attack/ Alexander