[94737] in North American Network Operators' Group
Re: broken DNS proxying at public wireless hotspots
daemon@ATHENA.MIT.EDU (Trent Lloyd)
Sun Feb 4 02:40:37 2007
Date: Sun, 4 Feb 2007 16:03:40 +0900
From: Trent Lloyd <lathiat@bur.st>
To: Joe Abley <jabley@ca.afilias.info>
Cc: Trent Lloyd <lathiat@bur.st>,
"Lasher, Donn" <DLasher@newedgenetworks.com>, nanog@merit.edu
In-Reply-To: <9F1CCC3B-F01C-4B36-88BD-E2C39B754CDF@ca.afilias.info>
Errors-To: owner-nanog@merit.edu
Hi Joe,
On Sun, Feb 04, 2007 at 01:30:58AM -0500, Joe Abley wrote:
>
> On 4-Feb-2007, at 00:58, Trent Lloyd wrote:
>
> >The flaw here is that DNS operates over 53(UDP), last time I
> >checked SSH
> >doesn't do UDP port forwarding?
>
> In the interests of dispelling a common myth, DNS operates over both
> 53/udp and 53/tcp. However, given that a substantial portion of most
> clients' queries will likely use UDP transport, your fundamental
> point stands.
Sorry, yes, you are 100% correct in that, but as you say in practice all
client resolver queries are most likely to be over UDP :)
Cheers,
Trent
