High CPU usage & service abuse
-
@robi yikes! good luck sir
-
impressive. no wonder backup failed.-rw-r--r-- 1 root root 237376357024 Jan 1 22:23 querylog.jsonhuman readable:
-rw-r--r-- 1 root root 222G Jan 1 22:23 querylog.json -
@robi it's a serious issue you have (think of IP reputation!) but it was also mentioned before:
https://forum.cloudron.io/topic/3840/adguard-on-upcoming-cloudron-v6-ddos-reflection-amplification
And it's in the docs:
https://docs.cloudron.io/apps/adguard-home/#securing-installation
I think DDNS doesn't work because you have to add an IP in AdGuard, I have the same issue with my home connection, that's why I don't use AdGuard in my personal Cloudron. I run Pi-Hole in my home network on a Raspberry Pi.
-
@robi Can you check what is taking so much space? Is this log files?
-
@girish yeah, the querylog was 222gigs eeeeek!
-
@robi Does your VPS provider not let you block port 53? Or do you need it to be accessible externally?
-
@atrilahiji I might be wrong about this but I think port 53 needs to be used to resolve DNS, and since @robi mentioned that he installed it on a business VPS it has to be publicly accessible for it to function. If it were a homelab would this be less of an issue?
-
@thpuffin @atrilahiji it would not be an issue because of NAT at home.
-
@doodlemania2 I decreased the query log retention from 90 days to 7 days as the default. But depending on the use case, it can be disabled altogether in the settings file.
-
@doodlemania2
Thanks torcloneI uploaded all 222GB to my Google Drive in less then a couple hours. (didn't time it, but expected it to be much longer.)VPS is on a 200mbit line last time I checked, so could be under an hour.
If only we had network graph stats.
