dnsparanoia broken in 1.0.11?
Gunther Mayer
gunther.mayer at googlemail.com
Tue Apr 1 12:39:24 UTC 2008
Hi guys,
I'm having major issues with the dnsparanoia option as I get way too
many false positives:
Mar 31 18:30:38 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 2: length 9)
Mar 31 18:30:38 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 2: length 4)
Mar 31 18:30:38 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 2: length 25)
Mar 31 18:32:04 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 6: length 39)
Mar 31 18:32:04 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 12: length 44)
Mar 31 18:32:04 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 6: length 52)
Mar 31 18:32:09 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 12: length 44)
Mar 31 18:32:09 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 6: length 39)
Mar 31 18:32:09 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 12: length 44)
Mar 31 18:32:09 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 6: length 52)
Mar 31 18:32:11 coova-chilli[889]: dns.c: 247: dropping dns for
anti-dnstunnel (type 6: length 36)
As it turns out some clients sometimes take 30 seconds just to resolve a
single name (at least from Firefox).
I don't know what the above types correspond to but I think that there's
a bug in the 1.0.11 code that drops the wrong types or misidentifies
them. Why it does eventually work is beyond me...
Has anybody encountered this before? Is this a known issue?
Gunther
More information about the Chilli
mailing list