Just got informed that IPfire can be misused to allow DNS tunneling. This may be already known
https://forum.ipfire.org/viewtopic.php?f=17&t=971&p=5797, but can this prevented somehow?
A know person just showed this to me in my home LAN with IPFire. I already locked down the LAN for DNS spoofing by redirecting each DNS request to IPFire but obviously this does not prevent DNS tunneling.
Ok, by using this tunnel, the performance is somehow limited but anyway you could send and receive information to and from the WAN. This technic is used by messenger Signal for example to bypass local authorities’ blockage.
So is there anything can prevent tunneling. FWIW the person who did it in my private LAN just used his Android smartphone.