Hacker News new | ask | show | jobs
by byteknight 2112 days ago
Sorry! I was wrong you are correct.

but nonetheless you're ingress rules in your cloud provider will not allow anything but that's single port so it's not really a big deal provided you close everything else off in your firewall.

I will make an update to see how I can work around this
2 comments
dsissitka 2112 days ago
> but nonetheless you're ingress rules in your cloud provider will not allow anything but that's single port...

That's all that's required for a DNS amplification attack. :)

link
byteknight 2112 days ago
Thats not true. DNS isnt on 51820. That's wireguard. You cannot hit the DNS unless you're connected to the wireguard VPN provided you're using a cloud provider and you havent configured any additional ingress rules other than port 51820. That I am positive on.
link
dsissitka 2112 days ago
You're right! I thought we were talking about the Pi-hole port. ><
link
jradd 2112 days ago
You can try setting up a vpn and no tcp/udp is necessary. Pinhole could be accessed over local network.
link