Skip to content
/ ec2masq Public

For automatically configuring dnsmasq for your ec2 instances so you can lock-down your VPC to protect it against DNS tunneling

2 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

chicagobuss/ec2masq

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
ec2masq.py
ec2masq.py
 
 
update_dnsmasq.sh
update_dnsmasq.sh
 
 

Repository files navigation

ec2masq

Allows you to secure a private VPC by turning off all DNS resolution

To use this service effectively, you need a minimum of two VPCs in the same region.

VPC A will be where this script runs and will have DNS resolution enabled. VPC B is the locked-down VPC and has DNS resolution disabled. It also needs dhcp options set to point to where you have dnsmasq running in VPC A. You'll need the appropriate security group on VPC A to allow port 53 udp traffic through from VPC B as well to the IP(s) where you run dnsmasq.

About

For automatically configuring dnsmasq for your ec2 instances so you can lock-down your VPC to protect it against DNS tunneling

Resources

Readme
Activity

Stars

2 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages