[tproxy] Tproxy + DNS + OpenDNS = Borked

Tristram Cheer tproxy at tristramcheer.com
Thu May 20 01:55:16 CEST 2010


Hey Guys,

After getting tproxy running on a server that handles a dozen or so of our
clients I've run into an interesting problem that I'm having issue with
fixing.

Some of our clients use openDNS to filter porn websites but when TPROXY is
in use they client can still access it, I've figured out that its because
the TPROXY server is looking up the DNS directly, I cant change the server
to use openDNS with the clients account because a number of clients using
openDNS use it aswell.

Is there anyway to get squid and TPROXY to spoof DNS requests to show as
coming from the client IP and not cache the result?


Cheers

Tristram
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.balabit.hu/pipermail/tproxy/attachments/20100520/9740df0c/attachment.htm 


More information about the tproxy mailing list