[squid-users] filtering http(s) sites, transparently
Jok Thuau
jok at spikes.com
Wed Oct 26 18:54:32 UTC 2016
On Wed, Oct 26, 2016 at 11:45 AM, Yuri Voinov <yvoinov at gmail.com> wrote:
>
>
> Jok,
>
> it can be DNS leak. Does you tested it? 8.8.8.8 can be poisoned (probably)
> or intercepted by ISP.
>
>
DNS is working fine and is not being poisoned/intercepted/messed with. The
records that come back from the google servers appear to not be consistent
(likely due to some anycast system, and not talking each time to the same
"host"). So when i request the same records back to back, each results in
one record, and that record changes really fast (non-coherent set of data,
so the results are correct, but random). Setting up the client and the
proxy to use a common infrastructure for DNS (dnsmasq on the network)
helped a lot.
Thanks,
Jok
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20161026/811a7e5e/attachment.html>
More information about the squid-users
mailing list