DNS Tunneling with iodine (part 1)

13 10 2013

Let’s make a quick DNS tunnel through iodine software.

First of all you should own a DNS server on the internet, to which make queries.
Let’s suppose mydomain.com is your own domain.

Create a subdomain like super.mydomain.com, then add an A record pointng to your iodine server, that we suppose is on a host on your LAN.
record A 10.0.0.10 super.mydomain.com

Create a new delegation on your DNS server. Delegate nameserver tunnel.mydomain.com for subdomain super.mydomain.com.
name tunnel.mydomain.com with NS super.mydomain.com

Now you have to setup the iodine server.
./iodined -f -P password -l 10.0.0.10 172.16.0.1/24 tunnel.mydomain.com

where 10.0.0.10 is the iodine server, 172.16.0.1 is the server’s ip address on the interface used for tunneling (this interface is automatically created from iodine).

You should also configure forwarding rules on the iodine server:

echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A POSTROUTING -s 172.16.0.0/24 -o eth0 -j MASQUERADE

Now you have to setup the iodine client.

./iodine -f -P password -r 8.8.8.2 tunnel.mydoman.com

where 8.8.8.2 is the public ip address of your DNS server.

Et voilà.

Advertisements

Actions

Information

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s




%d bloggers like this: