It sounds like they had a bigger "pipe" than you. I assume this was a reflected ddos since DNS is involved. I doubt your server/firewall was ddos'd as it seems more likely they overwhelmed your pipe coming in. If it was indeed 57MB per second, that is over 450mbps. As you can see, the firewall is dropping the packets as quickly as it gets them, so the traffic isn't making it past the firewall. But if your internet pipe is less than 500mbps, it might have struggled passing valid traffic amongst the "bad" traffic. It is hard to combat this issue if they have a public IP that sits physically in your location, firewall or not.
