DNS recursion attacks are common in cPanel linux servers. During recursion attcks server load increases and in the /var/log/messages file you will find domain queries which are not present in the server.
Fix
** Add this to the “options” section of /etc/named.conf
recursion no;
additional-from-auth no;
additional-from-cache no;
The Linux Admin Turned Kubestronaut 