On 1/11/2016 9:25 AM, James B. Byrne wrote: > Our firm uses a dedicated virtual host to provide ssh tunnels for > remote employee access to various internal services and for http/s > access to the outside world. For security reasons I would like to > have the remote users forward their dns lookups over the tunnel as > well. However, we recently chrooted a number of ssh users and these > accounts cannot resolve dns queries passed over the tunnel. use a proper VPN, like OpenVPN. ssh tunnels have way too many limitations. -- john r pierce, recycling bits in santa cruz