I'm late like the White Rabbit but here is a new choice
I am surprised that nobody suggested the solution that I use to do loads of DNS spoofing for other reasons. e.g. adblocking, malicious sites etc.
There is an OpenBSD package called dsniff which contains a program called dnsspoof. That intercepts any attempts to contact any DNS (on or beyond the firewall) and returns 127.0.0.1 (or whatever you choose) for any request that matches a rule in its conf file. Other requests pass unhindered.
The conf file allows wildcards which is great but you can unwittingly do silly things like blocking ad* which will mean you can't get to adsl.com.
It is just so easy to get and to use that I'm amazed at how little it is used.
|