[94734] in North American Network Operators' Group
Re: broken DNS proxying at public wireless hotspots
daemon@ATHENA.MIT.EDU (Joe Abley)
Sun Feb 4 01:40:00 2007
In-Reply-To: <20070204055821.GA16714@bur.st>
Cc: "Lasher, Donn" <DLasher@newedgenetworks.com>, nanog@merit.edu
From: Joe Abley <jabley@ca.afilias.info>
Date: Sun, 4 Feb 2007 01:30:58 -0500
To: Trent Lloyd <lathiat@bur.st>
Errors-To: owner-nanog@merit.edu
On 4-Feb-2007, at 00:58, Trent Lloyd wrote:
> The flaw here is that DNS operates over 53(UDP), last time I
> checked SSH
> doesn't do UDP port forwarding?
In the interests of dispelling a common myth, DNS operates over both
53/udp and 53/tcp. However, given that a substantial portion of most
clients' queries will likely use UDP transport, your fundamental
point stands.
Joe
