Best practice for DNS through tor
basile
basile at opensource.dyc.edu
Sun Jul 26 17:42:53 UTC 2009
Jim McClanahan wrote:
>> 3) I tried redirection with iptables on the local host but I can't
>> get that to work --- I'm not sure its possible. ...
>>
>
> I would think that should work. (I've done similar DNATing -- with DNS
> even! :-) Something like:
>
> iptables -t nat -A OUTPUT -p udp --dport 53 \
> -j DNAT --to-destination $router_ip:5300
>
>
Thanks that did it. I was using PREROUTING which is for packets routed
through the box, not packets originating from the box. I've been caught
by this before but it just didn't click.
--
Anthony G. Basile, Ph.D.
Chair of Information Technology
D'Youville College
Buffalo, NY 14201
USA
(716) 829-8197
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 260 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20090726/c77cf53c/attachment.pgp>
More information about the tor-talk
mailing list