At around 10:00am EST +/- 5 mins both ns1 and ns2 received sharp spikes of inbound traffic lasting approximately 15 minutes. While the volume of those spikes was not overpowering, the servers did timeout some queries.
As many people know, we have been under DDoS attack against ns1 and ns2 since last week. The attack has been ongoing but mitigated since last friday.
We are operating on the theory that this morning’s spike is another wave in the DDoS and we are currently analyzing the attack traffic.
At the moment, all systems have resumed normal functioning.
Since this attack is affecting NS1 and NS2, any customers still on the legacy platform can greatly reduce (eliminate) any impact by migrating to the new platform, which adds at least 1 more anycast constellation to all levels of service.