Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

You could try setting up a WireGuard server that listens on udp port 53, which is typically used by DNS and unlikely to be blocked. I haven't used it, but algo recently added a configuration option to do so[1]. Of course WireGuard traffic will look much different than DNS, so they could still block it if they really care to.

[1]: https://github.com/trailofbits/algo/pull/1594



I would say DNS is more likely to be blocked than other UDP ports, to force the use of a specific DNS server (not uncommon on public networks).


either that or port 53 is simply DNATted to an internal DNS server.

Which will make your wireguard VPN unreachable.


Blocking DNS to arbitrary IPs is very common in locked down environments. They force you to use their resolver handed out by DHCP.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: