Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
unbound blocked by ISP?
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
grant123
l33t
l33t


Joined: 23 Mar 2005
Posts: 643

PostPosted: Tue Nov 12, 2013 11:17 am    Post subject: unbound blocked by ISP? Reply with quote

unbound won't work in the last couple of hotels I've stayed in. Is this likely due to the ISP blocking port 53? Is there anything I can do about this or am I stuck with their DNS?
Back to top
View user's profile Send private message
eccerr0r
Advocate
Advocate


Joined: 01 Jul 2004
Posts: 3599
Location: USA

PostPosted: Tue Nov 12, 2013 4:19 pm    Post subject: Reply with quote

I was wondering, what is unbound, it's net-dns/unbound and is a DNS server.

However, DNS can't really be blocking port 53 for outgoing, it'd break everything as everything relies on DNS. Incoming however, even a simple NAT will block it.

I don't see why you can't run your own caching DNS server though since there shouldn't be incoming DNS. Are you sure your config still works? Why are you using a caching DNS server for a single machine?
_________________
Intel Core i7 2700K@ 4.1GHz/HD3000 graphics/8GB DDR3/180GB SSD
What am I supposed to be advocating?
Back to top
View user's profile Send private message
grant123
l33t
l33t


Joined: 23 Mar 2005
Posts: 643

PostPosted: Wed Nov 13, 2013 1:18 pm    Post subject: Reply with quote

Quote:
However, DNS can't really be blocking port 53 for outgoing, it'd break everything as everything relies on DNS.

Good point, but maybe the ISP is blocking outgoing DNS to all except their own DNS servers? Is that done sometimes? I'm at a residence now and unbound works without any change in config.

Quote:
Are you sure your config still works?

It actually should (and used to) work without any configuration. I checked unbound.conf but I don't see anything that could help.

Quote:
Why are you using a caching DNS server for a single machine?

Please correct me if I'm wrong, but doesn't caching reduce the number of outgoing DNS requests from the single machine?
Back to top
View user's profile Send private message
eccerr0r
Advocate
Advocate


Joined: 01 Jul 2004
Posts: 3599
Location: USA

PostPosted: Wed Nov 13, 2013 2:12 pm    Post subject: Reply with quote

Yes it's also possible that ISPs block all requests to DNS servers outside their network, possibly because they it's needed to make captive portals work.

I thought single machines with modern OS will cache DNS entries at least for a short while. Depending on TTL given by the DNS server, it will drop DNS lookups, but a caching server should also drop them too. I just ran sniffed my ether and it looks like this is the case, my Linux box appears to self cache some lookups, multiple lookups in succession don't appear to send out another DNS request unless the TTL for the entry is really short (like google...).
_________________
Intel Core i7 2700K@ 4.1GHz/HD3000 graphics/8GB DDR3/180GB SSD
What am I supposed to be advocating?
Back to top
View user's profile Send private message
grant123
l33t
l33t


Joined: 23 Mar 2005
Posts: 643

PostPosted: Thu Nov 14, 2013 12:07 pm    Post subject: Reply with quote

Quote:
Why are you using a caching DNS server for a single machine?

Is there a better (non-caching) choice for a single machine?
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum