On Wed, Mar 23, 2011 at 5:14 PM, Michael Schuh <[email protected]>wrote:
> > for a bit fun: > put *.facebook.com into your dns-masquerader and lead him to the > internal IP of the firewall > or to 127.0.0.1 :D (* -> www, or whatever else, i am not aware if the > dns-forwarder can match wildcards) > Deny all other DNS beside the access to the firewall. > Just make sure you block access to other DNS servers at the firewall. You might not think that so many people have heard of OpenDNS or Google Public DNS. - Y
