News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  Services
linktree Topic: Block DNS lookups via forwarder
Pages: [1]
Topic: Block DNS lookups via forwarder  (Read 3640 times)
« on: July 09, 2010, 16:24:51 »
animedreamer *
Posts: 19
Since the Monowall provides for DNS overrides, this mechanism can be used to implement a simple DNS blackhole.  I can just return an IP address of 0.0.0.0 for "bad" addresses.

My question is, how big can I make the list of DNS overrides?  If I were to generate DNS entries for every domain name on http://www.mvps.org/winhelp2002/hosts.htm, would this cause unforeseen issues (performance or otherwise)?

Thanks.

Vincent
« Reply #1 on: July 09, 2010, 23:43:51 »
brushedmoss ****
Posts: 446
Yes, it wouldn't work :-)

m0n0wall runs dnsmasq and passes the parameters for it's configuration through the command line.  that list of hosts would exceed the maximum length of the command line .....
« Reply #2 on: July 09, 2010, 23:45:07 »
animedreamer *
Posts: 19
Good to know.  Thanks.

Vincent
« Reply #3 on: July 12, 2010, 10:51:06 »
brushedmoss ****
Posts: 446
you could use opendns.com , they provide this type of service for free
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines