05-13-2013
DNS uses mostly UDP requests, which makes it difficult to tunnel... There's no socket to intercept, just random point-to-point messages from anywhere to anywhere and back.
Forcing it through port 443 wouldn't really accomplish much.
9 More Discussions You Might Find Interesting
1. Solaris
I just installed Solaris 6/10 without any problems but I didn't connect the network cable when I installed it.
Here are my problems:
-I can access webpages using IP addrsses but not with domain names
-ssh is installed but it is not running ('ps -e | grep sshd' didn't show it)
I have been... (4 Replies)
Discussion started by: kungpow
4 Replies
2. UNIX for Advanced & Expert Users
Dear guys,
I am facing the most weird problem I have ever encountered!
Ok here is the situation:
From my dns query.log file - it is generated using usual bind9 logging:
logging {
channel query.log {
file "/var/log/bind9/query.log" versions 10 size 2m;
severity debug 2;... (0 Replies)
Discussion started by: angeloio
0 Replies
3. HP-UX
# cat /var/log/messages | egrep -i "error|warn|critical|panic|exceed|alert|down|up"
Jul 10 09:30:06 plbp1s nanny: shutting down 202.61.9.147:443 due to connection failure
Jul 10 10:30:06 plbp1s nanny: shutting down 202.61.9.149:443 due to connection failure
443 is I understood it is port... (1 Reply)
Discussion started by: manalisharmabe
1 Replies
4. Red Hat
In my work env we have a lots of hosts. most all the hosts are in similar hostnames for eg cluster11.data.corp.sb1.uni.com, med123.data.corp.sk1.uni.com, also we have some server is colo network which have the host name like cluster11.data.colo.sb1.uni.com
Please help me to make the... (2 Replies)
Discussion started by: unimaxlin
2 Replies
5. UNIX for Advanced & Expert Users
Can someone please give me the conf file line to allow access to myexample.com and only that site, and only through http and https?
So far I have only that site accessible via http, but all https sites are opened.
Squid 3.1 on Cent 6
---------- Post updated at 12:06 PM ---------- Previous... (0 Replies)
Discussion started by: glev2005
0 Replies
6. Solaris
I am trying to install Sun Java Web Server using an ordinary user with no root/sudo rights.
I need to allow this web server to use ports 80 and 443. How can this be done?:confused: (1 Reply)
Discussion started by: emealogistics
1 Replies
7. HP-UX
Hello Experts,
I want to open the port 443 on my HP-UX system.
can you please help ?
Thanks in advance. (1 Reply)
Discussion started by: purushottamaher
1 Replies
8. Solaris
Hi,
I have a Solaris 10 system, which appears to be sending out LDAP queries to a server that is due to be decomissioned.
Is there a way to identify which process is sending out these queries? The problem is that the local port constantly changes, and the connections do not stay open long... (3 Replies)
Discussion started by: badoshi
3 Replies
9. UNIX for Beginners Questions & Answers
I am getting SSL_ERROR_SYSCALL in connection to qa-api.ncl.com:443. Please help me on this. But I am able to get response in Soap UI.
Please use CODE tags when displaying sample input, output, and code segments. (13 Replies)
Discussion started by: Ayeesha
13 Replies
LEARN ABOUT DEBIAN
dns2tcpc
dns2tcpc(1) General Commands Manual dns2tcpc(1)
NAME
dns2tcpc - A tunneling tool that encapsulate TCP traffic over DNS.
SYNOPSIS
dns2tcpc [ -h ] [ -c ] [ -z domain zone ] [ -d debug_level ] [ -r resource ] [ -k key ] [ -f config_file ] [ -e command ] [ -T request type
] [ -l local_port ] [ server ]
DESCRIPTION
dns2tcpc is a network tool used to encapsulate TCP communications in DNS. When connections are received on a specific port all TCP traffic
is sent to the remote dns2tcpd server and forwarded to a specific host and port. Multiple connections are supported.
dns2tcpc was written for demonstration purposes.
OPTIONS
-h Help Menu
-c Enable DNS compression. When used, be sure that all relay and DNS server support compression and really use it.
-z domain zone
Use this domain as endpoint.
-d debug level
Change debug level. Levels available are 1, 2 or 3.
-r resource
Remote resource to access.
-k key Pre shared key used for authentication (identification).
-f config file
Configuration file to use.
-T request type
Request type to use. Actually only KEY and TXT requests are supported.
-e command
Command to execute, I/O are redirected in the tunnel.
-l local_port
Local port accepting incomming connections (or - for stdin on UNIX systems).
-t connection timeout
Maximum DNS server's answer delay in seconds. A valid delay is between 1 and 240 seconds. Default is 3.
server DNS server to use. The first entry in resolv.conf file will be choosen if the server is not specified.
CONFIGURATION FILES
By default ${HOME}/.dns2tcprc is used if no configuration file is specified. Here is an example :
domain = dns2tcp.hsc.fr
resource = ssltunnel
local_port = 4430
enable_compression = 0
debug_level = 1
key = mykey
# DNS to use
server = ns.hsc.fr
EXAMPLES
dns2tcpc -k mykey -z dns2tcp.hsc.fr mydns
Ask the dns2tcp server to list available resources.
ssh -o 'ProxyCommand dns2tcpc -r ssh -l - -z dns2tcp.hsc.fr -k mykey mydns' myserver
Use dns2tcp as a proxy command with ssh. We try to connect to the ssh resource with the key 'mykey' and the DNS mydns.
dns2tcpc -r socat-resource -e '/bin/bash -i' -k mykey -z dns2tcp.hsc.fr mydns
Use dns2tcp as a reverse shell, the remote shell will appear on the socat-resource.
dns2tcpc -d 1 -f /dev/null -r ssl-tunnel -l 2000 -k mykey -T KEY -z dns2tcp.hsc.fr mydns
Do not use the default configuration file, bind local port 2000 and forward all the traffic on the remote ssl-tunnel resource, use
the first debug level. Use KEY type DNS requests.
AUTHORS
Olivier Dembour <olivier.dembour@hsc.fr>
SEE ALSO
ssltunnel
dns2tcpc(1)