Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
551
Views
0
Helpful
2
Replies

Bug in DNS software for router models ISR4451 and C1101

maynardDNS
Level 1
Level 1

‎05-06-2022 05:07 AM

Dear Cisco community,

we (research team from FU-Berlin) did some research on the open DNS infrastructure and discovered that more than 25% of the ODNS infrastructure are so called "Transparent Forwarder" which are devices that forward DNS requests to a public resolver by spoofing the client's IP address. More details on measurements and our paper can be found at https://odns.secnow.net

Further investigations led to the two routers mentioned in the title: ISR4451 and C1101.

(this was the result of an email campaign where we managed to get in contact with some network operators who confirmed this behavior)

There must be some bug in the DNS software which activates this transparent forwarding as soon as the router is configured as a DNS server.

 

We would appreciate any help or information on the implementation details of the DNS software used on these routers.

Thanks in advance!

Maynard Koch

0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎05-06-2022 05:14 AM

what verrsion code running on these devices ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

maynardDNS
Level 1
Level 1
In response to balaji.bandi

‎05-06-2022 05:20 AM

thats one thing I would like to find out

the operators could not (or would not) tell me

i am hoping to find someone who knows what DNS software is running generally on these devices (or what software is available and likely to be used on cisco routers)

we found this issue also on MikroTik devices, there may be an overlap somehow

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card