Need advice.

Have you tried contacting the organisation hosting the offending DNS servers and complaining? No sensible provider wants their infrastructure sucked into a bot war and they may be prepared to suspend the guy's account for abuse.

If his provider won't help, you could tarpit the bot IPs. The upside of a tarpit is that you minimise the amount of traffic that the attack generates for your Linode and reduce resource utilisation. The down side is that you can end up crashing or seriously overloading the attacking machines, which may provoke a more serious attack, which in turn will cause caker to null route your IP. If the attack is not causing serious problems then just ride it out.

If you decide to go with a tarpit, you need to get round the problem that the netfilter patch-o-matic for the tarpit target has been rejected for inclusion in the regular NF source tree (at the Netfilter Developers Conference last month), so it won't be available on Linodes any time soon. (This is an educated guess - I'm assuming that caker won't want to put half baked patch-o-matic stuff in his production kernels.) One possible solution is to use the dbtarpit component of SpamCannibal, with its configuration files modified to suit IRC instead of mail. It looks as if this only requires CONFIGIPNFCONNTRACK and CONFIGIPNFQUEUE, which are both in the Linode kernels.