dnsreflector 1.02 review
Downloaddnsreflector daemon listens for DNS queries on a local UDP port and answers with records pointing back to localhost
|
|
dnsreflector daemon listens for DNS queries on a local UDP port and answers with records pointing back to localhost. Combined with OpenBSD's packet filter pf(4) this works as a bandwidth efficient spamtrap.
dnsreflector was written and tested with OpenBSD. If you are interested in running dnsreflector on another platform, please contact me .
PF Setup
table < spamd > persist
rdr inet proto udp from < spamd > to any port 53 -> 127.0.0.1 port 53000
Usage
dnsreflector [-d] [-a address] [-p port]
-d Run as daemon in the background
-a address Bind to this address (default: 127.0.0.1)
-p port Bind to this port (default: 53000)
Linux: On popular demand I made a diff to compile dnsreflector with Linux (tested on SuSE). You will need a facility to redirect DNS queries coming from blacklisted hosts to dnsreflector. I don't know how to do this with Linux netfilter, but if you do, please tell me.
dnsreflector 1.02 keywords