This article covers a few tips to prevent DNS attacks.
Hackers will always try to target your public company services, researching to find weaknesses inside your Domain Name System.
Having a solid DNS hardening policy will help to mitigate most of the attacks described in this guide.
Therefore, Start auditing your DNS zones today in order to secure your DNS servers, collect information, and try to reduce your DNS public information as much as possible.
How to prevent DNS poisoning?
Thankfully, there is an antidote: DNS Security Protocol (DNSSEC).
Methods to protect DNS servers:
1. Use DNS forwarders.
2. Use caching-only DNS servers.
3. Use DNS advertisers.
4. Use DNS resolvers.
5. Protect DNS from cache pollution.
6. Enable DDNS for secure connections only.
7. Disable zone transfers.
8. Use firewalls to control DNS access.