How to fake DNS-responses?
Owen McShane
omcshane at vianetworks.co.uk
Tue Oct 28 15:27:35 UTC 2003
>
> > Hi there!
> >
> > I need to setup an DNS-Server (available: BIND 8) which responds to
> > ANY request with a SINGLE IP-Address (which belongs to my webserver).
> >
> > Background: I want to prevent users to get access to the internet with
> > an unconfigured/unpatched PC, so I set up a DHCP which gives them a
> > private IP. I just need to inform those users how to setup their
> > machine correctly. So every http-Request should lead to my webserver
> > which is presenting this information. I don't want to rely on giving
> > IE some proxy-settings via DHCP (this works fine, but only if IE is
> > configured to fetch those proxy-settings).
>
> Several people have written software already to do this.
> It is usually called "NetReg". Probably the most popular
> one can be found at www.netreg.org
Alternatively, you give the unconfigured/unpatched users a separate view of DNS, in which you claim to be authoritative for '.', and set up a zone for '.' with a wildcard A record pointing to your webserver.
Owen
--
Via Net.Works UK Ltd
Local Touch Global Reach
Owen McShane Systems Administrator
http://www.vianetworks.co.uk Tel +44 (0)1925 484444
More information about the bind-users
mailing list