nanog mailing list archives
Re: broken DNS proxying at public wireless hotspots
From: Mark Foster <blakjak () blakjak net>
Date: Sun, 4 Feb 2007 20:39:39 +1300 (NZDT)
On Sun, 4 Feb 2007, Peter J. Cherny wrote:
At 04:58 PM 4/2/07, Trent Lloyd <lathiat () bur st> wrote:The flaw here is that DNS operates over 53(UDP), last time I checked >SSH* Set up the profile, to your house/work/etc, of your favorite SSH client to forward port 53 local to port 53 on your remote machine.doesn't do UDP port forwarding? At the risk of stating the obvious ... Whats wrong with using an OpenVPN tunnel with appropriate acls ? (It works for me !)
1) SSH out, by IP, to a known-useful host. 2) Resolve all IPs required there / use it as a proxy if feasible. Depends on what you're trying to do over a public wlan, of course. VPN solutions are indeed obvious, and are the other work around. Suprised noones mentioned yet...I hope the wireless you're using is free!!! If not, well, I wouldn't be paying for an obviously broken service. (And would be making all appropriate noises to the provider).
I would imagine the average NANOGer is going to be quite capable to get around the problem, as long as theres the ability to go out via known-IP (assuming no more strict filtering than that..). But obviously some people are going to struggle, and frankly, service providers who provide 'broken' services (and still charge for it) really get on my nerves....
Mark.
Current thread:
- broken DNS proxying at public wireless hotspots Suresh Ramasubramanian (Feb 02)
- Re: broken DNS proxying at public wireless hotspots Trent Lloyd (Feb 02)
- Re: broken DNS proxying at public wireless hotspots Stephen Sprunk (Feb 02)
- Re: broken DNS proxying at public wireless hotspots Trent Lloyd (Feb 02)
- Re: broken DNS proxying at public wireless hotspots Stephen Sprunk (Feb 02)
- Re: broken DNS proxying at public wireless hotspots Gadi Evron (Feb 02)
- Re: broken DNS proxying at public wireless hotspots Suresh Ramasubramanian (Feb 04)
- Re: broken DNS proxying at public wireless hotspots Peter Dambier (Feb 03)
- Re: broken DNS proxying at public wireless hotspots Carl Karsten (Feb 03)
- Re: broken DNS proxying at public wireless hotspots Steven M. Bellovin (Feb 03)
- Message not available
- Re: broken DNS proxying at public wireless hotspots Peter J. Cherny (Feb 03)
- Re: broken DNS proxying at public wireless hotspots Mark Foster (Feb 04)
- Re: broken DNS proxying at public wireless hotspots Peter J. Cherny (Feb 03)
- Re: broken DNS proxying at public wireless hotspots Trent Lloyd (Feb 02)
- <Possible follow-ups>
- Re: broken DNS proxying at public wireless hotspots Fergie (Feb 02)
- Re: broken DNS proxying at public wireless hotspots Joe Abley (Feb 02)
- Re: broken DNS proxying at public wireless hotspots william(at)elan.net (Feb 02)
- Re: broken DNS proxying at public wireless hotspots Chris L. Morrow (Feb 02)
- Re: broken DNS proxying at public wireless hotspots Fergie (Feb 02)
- RE: broken DNS proxying at public wireless hotspots John van Oppen (Feb 03)
- RE: broken DNS proxying at public wireless hotspots Lasher, Donn (Feb 03)
- Re: broken DNS proxying at public wireless hotspots Trent Lloyd (Feb 03)
- Re: broken DNS proxying at public wireless hotspots Joe Abley (Feb 03)
- Re: broken DNS proxying at public wireless hotspots Trent Lloyd (Feb 03)
- Re: broken DNS proxying at public wireless hotspots Trent Lloyd (Feb 03)