Your work blocking RDP? here's a quick and easy solution

[TrX]

Or perhaps the network manager may have some sense; and drop large DNS packets without inspection? Either way, as previously mentioned in this thread - trying to bypass corporate security policies is just asking for trouble.

Ok, so you would need to send more, with a smaller payload. Not a problem.

But yes, unless it's your job to try, it's not a good way to make friends with your netadmin/the company in general.

Edit: It's also amazing (sad) how many networks have their own DNS servers for resolving queries, but then do not limit outgoing DNS to those machines only, so as long as you have ssh/a service running on P53 somewhere, the world is your tunnel.

//TrX