Several hosts behind a caching resolver
Victor Sudakov
vas at sibptus.ru
Fri Nov 29 01:02:35 UTC 2019
Any more opinions please if DNS queries leak information about the internal
network topology and size to the resolver?
It would be interesting to consider 2 separate cases:
1. The internal network is NATed.
2. The internal network is IPv6 with ipv6_privacy="YES"
Victor Sudakov wrote:
> Dear Colleagues,
>
> Several hosts of the local network use a FreeBSD server with BIND or
> local-unbound as a caching resolver. Let's call it "Resolver A."
> Resolver A forwards all queries to another resolver, e.g. 8.8.8.8 or
> some other, let's call it "Resolver B."
>
> Can the operator of Resolver B figure out how many clients there are
> behind Resolver A, or obtain any other information about the hosts on
> the said local network (like their operating system etc)? In other
> words, does Resolver A effectively anonymize the queries, or is some
> information about the internal network leaking?
>
> --
> Victor Sudakov, VAS4-RIPE, VAS47-RIPN
> 2:5005/49 at fidonet http://vas.tomsk.ru/
--
Victor Sudakov, VAS4-RIPE, VAS47-RIPN
2:5005/49 at fidonet http://vas.tomsk.ru/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-net/attachments/20191129/e8b518b4/attachment.sig>
More information about the freebsd-net
mailing list