本文介绍了Azure VM似乎运行易受攻击的UDP（LDAP）放大服务并参与DDoS攻击的处理方法，对大家解决问题具有一定的参考价值，需要的朋友们下面随着小编来一起学习吧！ 问题描述 大家好， 我收到了一封来自Microsoft的关于我的Azure测试环境中的一个VM的电子邮件： 订阅中的Azure VM似乎运行易受攻击的UDP（LDAP）放大服务并参与DDoS攻击。 请考虑以下列一种或多种方式重新配置此服务器： 如果不使用，则禁用易受攻击的UDP放大端口。 添加防火墙规则以允许来自授权端点的连接，但阻止来自所有其他主机的连接。 有人可以帮我理解应该阻止哪些端口？我打开了端口80和53并阻止了它们。解决方案   如果您不使用UDP端口，请尝试添加规则以阻止所有UDP端口以进行安全措施。如果您使用任何特定UDP端口，请添加具有更高优先级的新规则以允许这些特定端口。  问候，  Msrini Hi All,I have received an email from Microsoft regarding one of the VM's in my Azure test environment:Azure VM in your subscription appears to operate a vulnerable UDP (LDAP) amplification service and participated in a DDoS attack.Please consider reconfiguring this server in one or more of these ways:Disable vulnerable UDP amplification ports if not used.Add firewall rules to allow connections from authorized endpoints but block connections from all other hosts.Can someone please help me understand what ports should be blocked? I had ports 80 and 53 open and have blocked both. 解决方案 Hi, If you are not using UDP ports, try adding a rule to block all UDP ports for security measures. If you are using any specific UDP ports, add a new rule with higher priority to allow those specific ports. Regards, Msrini 这篇关于Azure VM似乎运行易受攻击的UDP（LDAP）放大服务并参与DDoS攻击的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持！