[dns-operations] That’ll never work–we don’t allow port 53 out | Strategic Cyber LLC
Jared Mauch
jared at puck.nether.net
Fri Jun 21 17:16:14 UTC 2013
On Jun 21, 2013, at 7:24 AM, Mike Jones <mike at mikejones.in> wrote:
> http://code.kryo.se/iodine/ allows you to set up a full IP(v4) VPN over DNS.
>
> Obviously a VPN type setup with IP packet headers and TCP retransmits etc doesn't help performance compared to a program implementing its own data channel over DNS, but it does mean it works with unmodified software.
>
> SSH over DNS is usable when there's literally no other option, but you're probably not going to have much luck with youtube.
You're not going to tunnel over ssh over dns to get to your SQUID proxy? :)
These things always interest/amuse me when folks try to find a way around "airgapped means airgapped" between networks that need to be secured. That includes removable media.
- Jared
More information about the dns-operations
mailing list