ssh -D tunnel can't access google.com
Hi,I don't know where to post this question so I post here,if I make a mistake I will apologize.
I have a server:Burst.net Xen #1 vps,with ubuntu 11.10 kernel 3.0.0-12-generic-pae.
my two clients is : Asus notebook windows7 64-bit,Asus eeepc Xubuntu 12.04.1
On Xubuntu I simply use ssh -D,On windows I use Bitvise ssh cilent,both with firefox 15.0+autoproxy,I also test it on chrome+proxy switchysharp,but I can access to all of the sites except google.com,and youtube,and all websites which belongs to google. this weird :<
But,if I found thier IPs,I can access them through IP. I used socks v5 proxy.It resolve dns on the server! So I log in the server,/etc/resolv.conf is already set to 126.96.36.199. I excute "host google.com"/"dig google.com"/"ping google.com".All of them return the correct reports.(from 188.8.131.52,right IPs).
But if I curl google.com,got nothing.If I curl google's IP,got its homepage.then I check /etc/hosts /etc/hosts.deny,nothing,they are alright. I have a ufw firewall default in policy to "deny",but I think it no effect.
Anybody help me? this is really wired.I even want to give up and buy a new one.but I don't have that money. :<
If you are using Firefox, you can set network.proxy.socks_remote_dns = true
That will make sure that DNS requests get passed via the SOCKS proxy instead of being resolved locally.
/etc/hosts.allow and hosts.deny are for incoming connections only, not outgoing.
the problem is not firefox,I can use other ssh account to access them, so I make sure dns is resolved remotely (socks v5)
Originally Posted by Lars Noodén
the things which really puzzled me is "host/dig/ping" working but curl/links don't work,even I'm not use the ssh tunnel
So the title of this thread is completely wrong is it not? You are saying the problem is completely on your server and ssh (and the dynamic proxy) has nothing to do with it?
Originally Posted by ame177674
sorry,maybe wrong.But I do not know how to describe it."host/dig/ping work but curl not work"? Then nobody knows what I'm saying.My English is not good,I'm not native speaker,sorry :( (I ask this question in our language form but no one can answer it)
Originally Posted by markbl