Sorry Vodafone folks, nothing personal, just an observation on how the company behaves.
The HFC DNS servers are experiencing degraded performance issues due to excessive load. The excessive load is a side effect of DNS amplification attacks being conducted on the Internet.
The reason that these attacks are impacting the HFC DNS servers is that a number of HFC customer devices are misconfigured and are acting as open DNS resolvers. The HFC DNS servers are also currently configured as open resolvers. Open resolvers are used to carry out DNS amplification attacks and this is the cause of the excessive load impacting the HFC DNS servers. It is important to note that these attacks are not specifically targeting either the HFC customer or the HFC DNS servers.
To resolve this issue, the HFC DNS servers are being reconfigured to only respond to queries from Vodafone customer networks. Also all customers with misconfigured devices are being contacted and given instructions in how to disable the open resolver configuration. As this will take time a number of network mitigations are being put in place as well, such as rate-limiting of DNS queries and enabling Denial of Service mitigation features within the network.
— Owen Evans (@buildmaster) July 7, 2014
— Stuart Maxwell (@stuartm) July 7, 2014
Also tonight I started to have the same problem on a few US websites and for the first time in three years am getting major jitter on my VoIP 2talk connection on the upstream. But I doubt the VoIP jitter is related to DNS.
jimbob79: Are there still a problem with VF DNS servers? I got two colleagues who are complaining about their home internet for the last few days saying that pages are incomplete i.e. no CSS pages loaded. Also tonight I started to have the same problem on a few US websites and for the first time in three years am getting major jitter on my VoIP 2talk connection on the upstream. But I doubt the VoIP jitter is related to DNS.
Having to fail over to OpenDNS.
The correct DNS servers for Vodafone/exTCL Cable should be 188.8.131.52 & 184.108.40.206.
The Paradise DNS servers, 220.127.116.11 & 18.104.22.168, were previously used as well.