Methods and tools exist that use DNS packets to smuggle in data and avoid checks, for example by the firewall. This data tunnel can then be used to transport any data via the DNS protocol.
Although this method conforms to the protocol’s standards, the establishment of these tunnels should be prevented under certain circumstances. The data tunnels are detected according to certain characteristics or properties of the DNS packets.
- SNMP ID:
- 2.17.21
- Console path:
- Setup > DNS
