nanog mailing list archives
Re: Yet another Quadruple DNS?
From: Baldur Norddahl <baldur.norddahl () gmail com>
Date: Thu, 29 Mar 2018 16:26:47 +0000
Technically, tweaking your DNS resolver to lie (and/or to log) is much easier and faster (and waaaaay less expensive) than setting up a packet interception and rewriting device at line rate.
It is just a static /32 route for well known DNS resolvers to the ISP resolver. It is free and trivial. To make your resolver reply with the correct IP you simply add all the well known /32 addresses to the localhost interface. To get any service instead of just well known ones, you can use source routing based on the port nummer 53. Direct this to a Linux server that will NAT the traffic towards the ISP DNS. This is also trivial and free, provided your routers support source routing (ours do). Detectable yes, but also hard to escape for the average user. They will need to go full VPN. Running your own resolver will not work. Regards Baldur
Current thread:
- Re: Yet another Quadruple DNS?, (continued)
- Re: Yet another Quadruple DNS? John Kinsella (Mar 29)
- Re: Yet another Quadruple DNS? Brian Kantor (Mar 29)
- Re: Yet another Quadruple DNS? Chris Adams (Mar 29)
- Re: Yet another Quadruple DNS? Brian Kantor (Mar 29)
- Re: Yet another Quadruple DNS? Bill Woodcock (Mar 29)
- Re: Yet another Quadruple DNS? Michael Crapse (Mar 29)
- Re: Yet another Quadruple DNS? Alan Buxey (Mar 29)
- Re: Yet another Quadruple DNS? Stephane Bortzmeyer (Mar 30)
- Re: Yet another Quadruple DNS? Jimmy Hess (Mar 29)
- Re: Yet another Quadruple DNS? Stephane Bortzmeyer (Mar 29)
- Re: Yet another Quadruple DNS? Baldur Norddahl (Mar 29)
- Re: Yet another Quadruple DNS? Ken Chase (Mar 29)
- Re: Yet another Quadruple DNS? Stephen Satchell (Mar 29)
- Re: Yet another Quadruple DNS? joel jaeggli (Mar 29)
- Re: Yet another Quadruple DNS? Christopher Morrow (Mar 30)
- Re: Yet another Quadruple DNS? Royce Williams (Mar 30)
- Re: Yet another Quadruple DNS? Royce Williams (Mar 30)
- Re: Yet another Quadruple DNS? Stephane Bortzmeyer (Mar 30)
- Re: Yet another Quadruple DNS? William Waites (Mar 30)
- Re: Yet another Quadruple DNS? Stephane Bortzmeyer (Mar 30)
- Re: Yet another Quadruple DNS? Feldman, Mark (Mar 30)