Versionen im Vergleich

Schlüssel

  • Diese Zeile wurde hinzugefügt.
  • Diese Zeile wurde entfernt.
  • Formatierung wurde geändert.


Seiteneigenschaften

As of LCOS 10.50 RC3, all DNS queries that pass through the LANCOM DNS forwarder are therefore subjected to a security check. This prevents data tunnels from being transported via DNS messages.


Companies Since the Domain Name System (DNS) is one of the fundamental services of the Internet, companies and organisations usually allow the DNS protocol to pass bidirectionally through their firewall because it . This is necessary so that, for their employees to access example, employees can call up external websites . Customers and prospects, on the other hand, should be and customers or interested parties are able to find the company's websites.

...

Since numerous DNS tunneling tools are offered for download on the Internet, DNS tunneling attacks can be carried out quite easily. Even inexperienced attackers are thus able to smuggle data past the security devices of a network (e.g. a firewall) or, for example, to bypass the login to a (paid) WLAN hotspot without having to authenticate the requesting WLAN client.

As of LCOS 10.50 RC3, all DNS queries that pass through the LANCOM DNS forwarder are therefore subjected to a security check. This prevents data tunnels from being transported via DNS messages.

The check is activated by default, but can be deactivated if required in the configuration in the menu DNS → Filter/Aliases → DNS Tunnel Filter. However, we recommend not deactivating the check.

...