Thread subject: Security Override :: DNS leaks In TOR

Posted by Cinergy on 03/26/2014 20:15:49
#1

Hey Kali users
I've been doing some reading and lab type stuff with Kali at home, I understand that only TCP traffic is forwarded through TOR and that DNS is a UDP connection(less)(?). Am I right in assuming that if I nmap scan an external IP ( my works server) that the TCP traffic will be routed through TOR but any ICMP or UDP traffic will be routed through normal Internet route paths?

Also what is an industry standard on setting up a dns proxy through TOR and Since I have goggled this and implemented proxychains is there a way that I can test that my DNS is being routed through tor?

thanks,
Cinergy

Posted by Override on 03/29/2014 12:58:03
#2

You could use wireshark to monitor your outgoing UDP packets to verify they are going threw the tor network.
http://www.wireshark.org/

Posted by 0pt1musPr1m3 on 04/05/2014 22:50:06
#3

Cinergy wrote:
Hey Kali users
I've been doing some reading and lab type stuff with Kali at home, I understand that only TCP traffic is forwarded through TOR and that DNS is a UDP connection(less)(?). Am I right in assuming that if I nmap scan an external IP ( my works server) that the TCP traffic will be routed through TOR but any ICMP or UDP traffic will be routed through normal Internet route paths?

Also what is an industry standard on setting up a dns proxy through TOR and Since I have goggled this and implemented proxychains is there a way that I can test that my DNS is being routed through tor?

thanks,
Cinergy



https://www.dnsleaktest.com/