说我滥用IP，但是看不懂他说的原因是什么，大神帮我看下呗

laokang

他说:
his ticket is to inform you that we have received an abuse report for an IP
address associated under your account. This report has been received from a
security feed. You have 24 hours to investigate and respond to this ticket.
Failure to respond may result in the associated IP address(es) being null routed
and/or suspension of your service(s). Repeated abuse(s) may result in service
termination.

### ABUSE INFORMATION ###
[#59791] openresolvers | 204.45.80.254 | 2012-09-26 | DDOS attack

### ABUSE DESCRIPTION ###
- openresolvers: IP hosts an unsecured nameserver that allows queries for any
domain (queries should be restricted to local domains only)

Thank you in advance for your cooperation.

我没看懂，回复了
Hi,I don't know what's mean of 'allows queries for any domain' My Control Panel is 'kloxo'.
Should I turn off nameserver of kloxo?

然后他回：
"Openresolvers" are the nameservers that allow performing recursive
DNS queries for every domain/IP from anyone. Recursive DNS with no restriction
is considered a DNS vulnerability as it can be abused from 3rd parties to
perform Denial of Service (DoS) attacks using your server. You may have a
nameserver for local resolving and DNS hosting of domains but you're advised to
restrict the nameserver to deny DNS queries by default and allow queries in the
following cases only:
- DNS requests FROM anyone TO local hosted domains
- DNS requests FROM local IPs TO any IP/domain

Additional Information to implement such filtering:
- http://www.ietf.org/rfc/rfc5358.txt
- http://www.team-cymru.org/Services/Resolvers/
- http://www.isotf.org/news/DNS-Amplification-Attacks.pdf
- http://condor.depaul.edu/~jkristof/slides/dns-ctinetseminar.pdf

Unfortunately we don't know how you will have to configure Kloxo in order to
disable open recursion of your nameserver.

Please keep us informed if you have any further questions.

Thank you in advance for your cooperation.

--
Aggelos P. <aggelosp@fdcservers.net>
Network Security Administrator


请问这到底是什么原因啊，哪位帮我简单看一下理由~~

kingto

DNS requests FROM anyone TO local hosted domains
从任何人到本地域名的DNS请求
DNS requests FROM local IPs TO any IP/domain
从本地IP到任何ip/域名的dns请求

nisheng

上面说NS只适合用于以下两种情况
DNS requests FROM anyone TO local hosted domains
DNS requests FROM local IPs TO any IP/domain
你可以检查下看看