dns interceptors

Steve Bertrand steve at ibctech.ca
Fri Feb 12 17:15:25 CST 2010


Jared Mauch wrote:
> On Feb 12, 2010, at 5:15 PM, Randy Bush wrote:
> 
>> i just lost ten minutes debugging what i thought was a server problem
>> which turned out to be a dns trapper on the wireless in the changi sats
>> lounge.  this is not the first time i have been caught by this.
>>
>> what are other roaming folk doing about this?
>>
>> randy
> 
> I typically VPN out of broken networks whenever possible.
> 
> Operate a VPN/PPTP/IPSEC/squid-proxy/ssh on tcp/80/443 to work around the issues.

Yep...

On Windows laptop, a wrapper .bat sets up Putty (SSH) to configure a
tunnel to a remote server, and for FBSD, an sh script with the SSH
command line within.

Depending on the situation, the tunnel may handle all core protocols,
even 587 when it has been hijacked/blocked.

Steve




More information about the NANOG mailing list