North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: broken DNS proxying at public wireless hotspots

  • From: Peter J. Cherny
  • Date: Sun Feb 04 02:31:23 2007
  • Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=default;; h=Date:From:Subject; b=JxZg7Xyrc4Rr1vkpSg/TL+P9iwoGhoCnWCMS/KgRA9gAmT4zgjdpe4XQdg3549g8Ufj2uwfMqbLqTCju2YhHYW9DOAFlQLvbzjKK90Nx8OTvVkoIRQk1IDD3iLcahntf;

At 04:58 PM 4/2/07, Trent Lloyd <[email protected]> wrote:
>> * Set up the profile, to your house/work/etc, of your favorite SSH
>> client to forward port 53 local to port 53 on your remote machine.
>The flaw here is that DNS operates over 53(UDP), last time I checked >SSH doesn't do UDP port forwarding?

At the risk of stating the obvious ...

Whats wrong with using an OpenVPN tunnel with appropriate acls ?
(It works for me !)