watchNS/jp/486.jp - moin.dnsq.info

1. watchNS/486.jp

Knot resolverは空ではないAnswer Sectionをもつ返答のAuthority Sectionなどは

キャッシュには入れないことが確認できます。

486.jp はさくらDNSサービスなどを利用している。

wizardsoft.jp の方がよりはっきりする。

kresd @127.0.0.3 (1.2.6)

2. A の問い合わせ

Authority Section にNSを返してくるが、これはJP登録とは異なるRRSetである。

$ dnsq a www.486.jp ns1.dns.ne.jp (さくらへの問い合わせ）

1 www.486.jp:
148 bytes, 1+1+3+3 records, response, authoritative, noerror
query: 1 www.486.jp
answer: www.486.jp 86400 A 59.106.13.203
authority: 486.jp 86400 NS ns.486.jp
authority: 486.jp 86400 NS ns2.486.jp
authority: 486.jp 86400 NS domain.486.jp
additional: ns.486.jp 86400 A 49.212.137.142
additional: ns2.486.jp 86400 A 202.61.17.82
additional: domain.486.jp 86400 A 118.243.114.175

$ kdig www.486.jp @127.0.0.3　　　(Knot resolver経由）

;; WARNING: response timeout for 127.0.0.3@53(UDP)

;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 38276
;; Flags: qr rd ra; QUERY: 1; ANSWER: 1; AUTHORITY: 0; ADDITIONAL: 0

;; QUESTION SECTION:
;; www.486.jp.                  IN      A

;; ANSWER SECTION:
www.486.jp.             86400   IN      A       59.106.13.203

;; Received 44 B
;; Time 2017-04-26 09:56:55 JST
;; From 127.0.0.3@53(UDP) in 48.2 ms

[system] interactive mode
> [    0][plan] plan 'www.486.jp.' type 'A'
[28973][iter]   'www.486.jp.' type 'A' id was assigned, parent id 0
[ 1334][iter]   'www.486.jp.' type 'A' id was assigned, parent id 0
[ 1334][resl]   => querying: '65.22.40.25' score: 10 zone cut: 'jp.' m12n: '486.jP.' type: 'NS' proto: 'udp'
[ 1334][iter]   <= using glue for 'ns002.486.jp.': '202.61.17.82'
[ 1334][iter]   <= using glue for 'ns003.486.jp.': '59.106.173.48'
[ 1334][iter]   <= referral response, follow
[ 1334][resl]   <= server: '65.22.40.25' rtt: 168 ms
[39951][iter]   'www.486.jp.' type 'A' id was assigned, parent id 0
[39951][resl]   => querying: '59.106.173.48' score: 10 zone cut: '486.jp.' m12n: 'wWw.486.Jp.' type: 'A' proto: 'udp'
[39951][resl]   => querying: '202.61.17.82' score: 10 zone cut: '486.jp.' m12n: 'wWw.486.Jp.' type: 'A' proto: 'udp'
[39951][resl]   => querying: '59.106.173.48' score: 10 zone cut: '486.jp.' m12n: 'wWw.486.Jp.' type: 'A' proto: 'udp'
[39951][resl]   => querying: '202.61.17.82' score: 10 zone cut: '486.jp.' m12n: 'wWw.486.Jp.' type: 'A' proto: 'udp'
[39951][wrkr]   => server: '59.106.173.48' flagged as 'bad'
[39951][wrkr]   => server: '202.61.17.82' flagged as 'bad'
[50485][iter]   'www.486.jp.' type 'A' id was assigned, parent id 0
[    0][plan] plan 'www.486.jp.' type 'A'
[23382][iter]   'www.486.jp.' type 'A' id was assigned, parent id 0
[64980][iter]   'www.486.jp.' type 'A' id was assigned, parent id 0
[64980][plan]   plan 'ns2.dns.ne.jp.' type 'A'
[38777][iter]     'ns2.dns.ne.jp.' type 'A' id was assigned, parent id 64980
[44415][iter]     'ns2.dns.ne.jp.' type 'A' id was assigned, parent id 64980
[44415][resl]     => querying: '203.119.40.1' score: 10 zone cut: 'jp.' m12n: 'NE.JP.' type: 'NS' proto: 'udp'
[44415][iter]     <= rcode: NOERROR
[44415][iter]     <= found cut, retrying with non-minimized name
[44415][ pc ]     => answer cached for TTL=900
[44415][resl]     <= server: '203.119.40.1' rtt: 6 ms
[10256][iter]     'ns2.dns.ne.jp.' type 'A' id was assigned, parent id 64980
[10256][resl]     => querying: '203.119.40.1' score: 11 zone cut: 'jp.' m12n: 'NS2.dNS.nE.jP.' type: 'A' proto: 'udp'
[10256][iter]     <= using glue for 'ns1.dns.ne.jp.': '61.211.236.1'
[10256][iter]     <= using glue for 'ns2.dns.ne.jp.': '210.224.172.13'
[10256][iter]     <= referral response, follow
[10256][resl]     <= server: '203.119.40.1' rtt: 6 ms
[40488][iter]     'ns2.dns.ne.jp.' type 'A' id was assigned, parent id 64980
[40488][resl]     => querying: '210.224.172.13' score: 10 zone cut: 'dns.ne.jp.' m12n: 'NS2.DNs.NE.jp.' type: 'A' proto: 'udp'
[40488][iter]     <= rcode: NOERROR
[64980][iter]   <= using glue for 'ns2.dns.ne.jp.': '210.224.172.13'
[40488][resl]     <= server: '210.224.172.13' rtt: 17 ms
[44203][iter]   'www.486.jp.' type 'A' id was assigned, parent id 0
[44203][resl]   => querying: '210.224.172.13' score: 17 zone cut: '486.jp.' m12n: 'WWw.486.JP.' type: 'A' proto: 'udp'
[44203][iter]   <= rcode: NOERROR
[44203][resl]   <= server: '210.224.172.13' rtt: 17 ms
[    0][resl] finished: 4, queries: 2, mempool: 16400 B
[31889][iter]   'www.486.jp.' type 'A' id was assigned, parent id 0
[31889][plan]   plan 'ns1.dns.ne.jp.' type 'A'
[41414][iter]     'ns1.dns.ne.jp.' type 'A' id was assigned, parent id 31889
[41414][ rc ]     => satisfied from cache
[41414][iter]     <= rcode: NOERROR
[31889][iter]   <= using glue for 'ns1.dns.ne.jp.': '61.211.236.1'
[40996][iter]   'www.486.jp.' type 'A' id was assigned, parent id 0
[40996][ rc ]   => satisfied from cache
[40996][iter]   <= rcode: NOERROR
[    0][resl] finished: 4, queries: 2, mempool: 16400 B

3. NS

$ kdig -t ns 486.jp @127.0.0.3

;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 1434
;; Flags: qr rd ra; QUERY: 1; ANSWER: 4; AUTHORITY: 0; ADDITIONAL: 0

;; QUESTION SECTION:
;; 486.jp.                      IN      NS

;; ANSWER SECTION:
486.jp.                 86257   IN      NS      ns1.dns.ne.jp.
486.jp.                 86257   IN      NS      ns2.dns.ne.jp.
486.jp.                 86257   IN      NS      ns002.486.jp.
486.jp.                 86257   IN      NS      ns003.486.jp.

;; Received 111 B
;; Time 2017-04-26 09:59:13 JST
;; From 127.0.0.3@53(UDP) in 0.2 ms

[    0][plan] plan '486.jp.' type 'NS'
[26772][iter]   '486.jp.' type 'NS' id was assigned, parent id 0
[26772][ rc ]   => satisfied from cache
[26772][iter]   <= rcode: NOERROR
[    0][resl] finished: 4, queries: 1, mempool: 16400 B

委譲情報が使われていることが分かる。

$ dnsq ns 486.jp a.dns.jp

2 486.jp:
171 bytes, 1+0+4+4 records, response, noerror
query: 2 486.jp
authority: 486.jp 86400 NS ns2.dns.ne.jp
authority: 486.jp 86400 NS ns002.486.jp
authority: 486.jp 86400 NS ns003.486.jp
authority: 486.jp 86400 NS ns1.dns.ne.jp
additional: ns1.dns.ne.jp 86400 A 61.211.236.1
additional: ns2.dns.ne.jp 86400 A 210.224.172.13
additional: ns002.486.jp 86400 A 202.61.17.82
additional: ns003.486.jp 86400 A 59.106.173.48

4. 問題もある

glueを返答に使っている。

NS, A の問い合わせをしてみると、!!!

[    0][plan] plan '486.jp.' type 'NS'
[31047][iter]   '486.jp.' type 'NS' id was assigned, parent id 0
[31047][ rc ]   => satisfied from cache
[31047][iter]   <= rcode: NOERROR
[    0][resl] finished: 4, queries: 1, mempool: 32800 B
[    0][plan] plan 'ns002.486.jp.' type 'A'
[30362][iter]   'ns002.486.jp.' type 'A' id was assigned, parent id 0
[30362][ rc ]   => satisfied from cache
[30362][iter]   <= rcode: NOERROR
[    0][resl] finished: 4, queries: 1, mempool: 32800 B
[    0][plan] plan 'ns003.486.jp.' type 'A'
[23057][iter]   'ns003.486.jp.' type 'A' id was assigned, parent id 0
[23057][ rc ]   => satisfied from cache
[23057][iter]   <= rcode: NOERROR
[    0][resl] finished: 4, queries: 1, mempool: 32800 B

MoinQ: watchNS/jp/486.jp

1. watchNS/486.jp

2. A の問い合わせ

3. NS

4. 問題もある