[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #10468 [Tor]: Make DnsPort, IPv6, and AutomapHostsOnResolve work tother.
#10468: Make DnsPort, IPv6, and AutomapHostsOnResolve work tother.
-------------------------+-------------------------------------------------
Reporter: nickm | Owner:
Type: defect | Status: needs_review
Priority: major | Milestone: Tor: 0.2.5.x-final
Component: Tor | Version:
Resolution: | Keywords: tor-client 024-backport automap dns
Actual Points: | ipv6
Points: | Parent ID:
-------------------------+-------------------------------------------------
Comment (by andrea):
I think this looks okay, but lemme make sure I understand all this:
1.) We get a request for an A or AAAA record
2.) We need to make sure the answer is the same record type and the local
transparent proxy IP we return is the right address family.
3.) We need to set up mapping so that when we get incoming TCP connections
on that IPv4 or IPv6 address we just returned, we send it the right place.
4.) Now here's the slightly tricky case that I'm not 100% sure what we
actually do without looking deeper: does the address family of the local
transparent proxy IP and the original DNS request have to match the
address family on the exit side?
- I.e., suppose a server (say, bar.foo.com) somewhere is IPv6 only and
offers only AAAA records, not A records. Suppose we have transparent
proxying and a client only supports IPv4, and requests an A record for
bar.foo.com from our DNSPort.
- What do we return, and what does the mapping we set up remember about
it? How would the behavior differ if the server had both A and AAAA
records?
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10468#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs