How can a DNS server confound IP geolocation?

1

Most BBC on-line video content is blocked for IP addresses outside the UK. I recently beta-tested a service that gets round this block. All I had to do was change the DNS configuration on my laptop, and it just worked.

My understanding is that this system does not work like a VPN. Most of the content is streamed directly from the BBC's CDN to my laptop.

How does this work? And is it something that the BBC could block again if they wanted to?

EDIT

To clarify: My understanding is that only the first megabyte of content passes through the DNS server. So for the initial "handshake" it does, indeed act like a VPN. But after that, the DNS server gets out of the way and somehow persuades the CDN to deliver content directly to an IP address in Japan.

Pitarou

Posted 2013-11-27T03:52:56.190

Reputation: 127

Answers

0

Name names, please.

If the BBC does this like everyone else (and they do), it's based on the address of the client. No amount of DNS tricks will change what your IP is. HOWEVER, this can make for a "dns hijacking" "man-in-the-middle attack": Your DNS lookups are answered with IPs they control, thus you are connecting to them, not the BBC.

It's like a VPN, only through a process no sane person would trust -- as they can now trick you into connecting through them for almost anything.

Ricky Beam

Posted 2013-11-27T03:52:56.190

Reputation: 629

My understanding is that it only works like a VPN for the first Megabyte of data (enough for the initial handshake). After the, the DNS somehow persuades the CDN to deliver content directly to my IP address. – Pitarou – 2013-11-27T23:13:07.933

The service is in private beta-test, so I won't name names.

I take your point about security. – Pitarou – 2013-11-27T23:30:50.773

1there's alot of services like this out there. unodns, tunlr, eledns, and unlocator for starters. – Sirex – 2013-11-27T23:55:25.547

Asked: 2013-11-27T03:52:56.190

Viewed: 1 806 times

Active: 2013-11-27T23:15:53.463