Help - Search - Members - Calendar
Full Version: Tunnelling Over Dns (nstx Etc)
OESF Forums > General Forums > General Support and Discussion > Security and Networking
speculatrix
There are a number of wireless providers who, naturally, stop you accessing the internet without subscription, however, they do allow some DNS lookups to work.

Using DNS tunnelling, you can get a working connection IF you know the IP address of an appropriately set up machine.

Such software includes NSTX:
http://nstx.dereference.de/nstx/

and there's a neat hack with SSH:
http://www.boingboing.net/2004/06/21/tunne...ssh_over_d.html

Has anyone gotten NSTX working on the Zaurus reliably?

Paul
aki
Have you actually tried this using the sw on a linux laptop?
I would think hotspot operators could prevent this by configuring their proxy to send you to the sign on page no matter what address you type.
speculatrix
QUOTE(aki @ Apr 7 2005, 10:22 PM)
Have you actually tried this using the sw on a linux laptop?
I would think hotspot operators could prevent this by configuring their proxy to send you to the sign on page no matter what address you type.
*


Hi Aki,
what happens is that your zaurus ends up with a new network interface, e.g. nstx0, which you make your default route. This takes your data and hides it inside DNS in such a way that it gets to a server of your choice (you need to be able to control your own dns, and run a server on an ADSL line or something) where the server has a network program pretending to be a DNS server but is in fact running the tunelling protocol.

Most hotspots don't block much DNS, they just force TCP traffic to their proxy or home page.

Paul
cowcow
Hi

anyone got nstx to work with zaurus?

or have anyone tried the perl version of ssh over dns (ozymandns) ?
speculatrix
QUOTE(cowcow @ May 30 2005, 06:19 AM)
Hi

anyone got nstx to work with zaurus?

or have anyone tried the perl version of ssh over dns (ozymandns) ?
*


I decided to try it using a three machines I have at work, and it highlighted an important component missing from the Z's kernel - the "universal tun/tap interface" (whatever that is).

When I next get a try to make nstx work, I will then know what magic kernel modules I need.

But your ssh over DNS sounds very promising. I shall go take a look!

Paul
cowcow
QUOTE(speculatrix @ May 30 2005, 02:01 PM)
I decided to try it using a three machines I have at work, and it highlighted an important component missing from the Z's kernel - the "universal tun/tap interface" (whatever that is).

When I next get a try to make nstx work, I will then know what magic kernel modules I need.

But your ssh over DNS sounds very promising. I shall go take a look!

Paul
*

u can get tun here http://www.liebchen-online.de/kmodc7x0.tgz for zaurus/sharp rom.

for ozymandns, i realized u need perl with threads cability, anyone know which perl has threads enabled for zaurus? you can test using :
CODE
perl -e "use threads"


if it does not have threads, it will show something like this:
CODE
perl -e "use threads"
-e line 1:

This Perl hasn't been configured and built properly for the threads
module to work.  (The 'useithreads' configuration option hasn't been used.)

Having threads support requires all of Perl and all of the XS modules in
the Perl installation to be rebuilt, it is not just a question of adding
the threads module.  (In other words, threaded and non-threaded Perls
are binary incompatible.)

If you want to the use the threads module, please contact the people
who built your Perl.

Cannot continue, aborting.


if it returns nothing, then perl has threads compiled in. u also need a few other perl modules like Net::DNS, Disgest::SHA1, etc
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2014 Invision Power Services, Inc.