DNS TUNNELING WITH IODINE
I have had the privilege of traveling around the world a bit (for work, but still) and I have seen many "public" internet setups that require registration and/or payment. Some of these I have no problem with, but I have found a lot that try to get you on with false advertising or refund offers that go nowhere. And sometimes, for various reasons, it may not be a good idea to register. For those times, you may still be able to connect and one way of doing that is tunneling data through DNS packets. This is where "iodine" comes in, it is used as both server and client. Because in this type of setup you do need your own server to connect to and then outwards from there. Lets take a look..
The problem# links www.google.ca
-dump Connection refused # ssh 192.168.2.104 ssh: connect to host 192.168.2.104 port 22: Connection refused |
bobpub.mooo.com - A -
xx.xx.xx.xx bobns.mooo.com - NS - bobpub.mooo.com |
#
/usr/local/sbin/iodined -c -f -D -P test 10.0.0.1 bobns.mooo.com Debug level 1 enabled, will stay in foreground. Add more -D switches to set higher debug level. Opened dns0 Setting IP of dns0 to 10.0.0.1 Setting MTU of dns0 to 1130 Opened UDP socket Listening to dns for domain bobns.mooo.com |
# iodine -P test
bobns.mooo.com Opened dns0 Opened UDP socket Sending DNS queries for bobns.mooo.com to 192.168.2.1 Autodetecting DNS query type (use -T to override). Using DNS type NULL queries Version ok, both using protocol v 0x00000502. You are user #1 Setting IP of dns0 to 10.0.0.3 Setting MTU of dns0 to 1130 Server tunnel IP is 10.0.0.1 Testing raw UDP data to the server (skip with -r) Server is at 192.168.2.104, trying raw login: OK Sending raw traffic directly to 192.168.2.104 Connection setup complete, transmitting data. Detaching from terminal... |
IN login
raw, len 16, from user 0 IN ping raw, from user 0 IN ping raw, from user 0 |
# ssh -D 1080 10.0.0.1 root@10.0.0.1's password: Last login: from 10.0.0.3 [root@localhost ~]# |
# proxychains links
www.google.ca -dump ProxyChains-3.1 (http://proxychains.sf.net) |DNS-request| www.google.ca |S-chain|-<>-127.0.0.1:1080-<><>-4.2.2.2:53-<><>-OK |DNS-response| www.google.ca is 173.194.38.152 |S-chain|-<>-127.0.0.1:1080-<><>-173.194.38.152:80-<><>-OK _________________________________________ _________________________________________ _________________________________________ _________________________________________ _________________________________________ _________________________________________ _________________________________________ Search Images Maps Play YouTube News Gmail Drive More >> Web History | Settings | Sign in Canada __________________________________________________________ Advanced [ Google Search ] [ I'm Feeling Lucky ] searchLanguage tools Google.ca offered in: Franc,ais Advertising ProgramsBusiness Solutions+GoogleAbout GoogleGoogle.com (c) 2013 - Privacy & Terms |