nanog mailing list archives
Re: dns interceptors
From: "Patrick W. Gilmore" <patrick () ianai net>
Date: Sun, 14 Feb 2010 12:56:25 -0500
On Feb 14, 2010, at 12:53 PM, Jason Frisvold wrote:
On Feb 14, 2010, at 12:42 PM, Patrick W. Gilmore wrote:How does that help? It still sends port 53 requests to the authorities, which will be intercepted.Hrm.. Maybe I misunderstood. Are the packets being intercepted, or is the problem the local resolvers?
While I admit I have not read every post in the thread, I note the subject line. :)
Well, in either case, another option would be to use something like openvpn, cisco vpn, etc. with very limited routes. Set it up so only your dns traffic is sent over the tunnel. Then you can still use the local network, crappy as it may be, without having to deal with the added overhead of ssh and the like.
ISTM Randy's comment about SSH tunnels would have the same effect. -- TTFN, patrick
Current thread:
- Re: dns interceptors, (continued)
- Re: dns interceptors Jared Mauch (Feb 12)
- Re: dns interceptors Steve Bertrand (Feb 12)
- Re: dns interceptors Bill Thompson (Feb 12)
- Re: dns interceptors Jim Richardson (Feb 12)
- Re: dns interceptors Steve Bertrand (Feb 12)
- Re: dns interceptors Oliver Gorwits (Feb 13)
- Re: dns interceptors Randy Bush (Feb 13)
- Re: dns interceptors Jason Frisvold (Feb 14)
- Re: dns interceptors Patrick W. Gilmore (Feb 14)
- Re: dns interceptors Jason Frisvold (Feb 14)
- Re: dns interceptors Patrick W. Gilmore (Feb 14)
- Re: dns interceptors John Levine (Feb 14)
- Re: dns interceptors Larry Sheldon (Feb 14)
- Re: dns interceptors Bill Weiss (Feb 14)
- RE: dns interceptors Justin Krejci (Feb 18)
- Re: dns interceptors Jared Mauch (Feb 12)
- Re: dns interceptors Sean Donelan (Feb 14)
- Re: dns interceptors Mark Andrews (Feb 14)
- Re: dns interceptors Steven Bellovin (Feb 14)
- Re: dns interceptors Valdis . Kletnieks (Feb 15)
- Re: dns interceptors [SEC=UNCLASSIFIED] John Levine (Feb 12)