large organization nameservers sending icmp packets to dns servers.
Tony Finch
dot at dotat.at
Wed Aug 8 16:26:36 UTC 2007
On Tue, 7 Aug 2007, Valdis.Kletnieks at vt.edu wrote:
>
> they *already* don't answer with the txt records if you try to do a
> 'dig aol.com any' because that 512 and the 497 returned on a 'dig aol.com mx'
> won't fit in one 512-byte packet.
Wrong! You're probably not getting the txt records because you don't have
them in your cache. See the following four queries for an example.
(First three from my cache, fourth from AOL.)
; <<>> DiG 9.3.1 <<>> aol.com any
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15075
;; flags: qr rd ra; QUERY: 1, ANSWER: 8, AUTHORITY: 4, ADDITIONAL: 4
;; QUESTION SECTION:
;aol.com. IN ANY
;; ANSWER SECTION:
aol.com. 1790 IN NS dns-06.ns.aol.com.
aol.com. 1790 IN NS dns-07.ns.aol.com.
aol.com. 1790 IN NS dns-01.ns.aol.com.
aol.com. 1790 IN NS dns-02.ns.aol.com.
aol.com. 2802 IN MX 15 mailin-04.mx.aol.com.
aol.com. 2802 IN MX 15 mailin-01.mx.aol.com.
aol.com. 2802 IN MX 15 mailin-02.mx.aol.com.
aol.com. 2802 IN MX 15 mailin-03.mx.aol.com.
;; AUTHORITY SECTION:
aol.com. 1790 IN NS dns-02.ns.aol.com.
aol.com. 1790 IN NS dns-06.ns.aol.com.
aol.com. 1790 IN NS dns-07.ns.aol.com.
aol.com. 1790 IN NS dns-01.ns.aol.com.
;; ADDITIONAL SECTION:
dns-01.ns.aol.com. 115155 IN A 64.12.51.132
dns-02.ns.aol.com. 115817 IN A 205.188.157.232
dns-06.ns.aol.com. 12385 IN A 149.174.54.153
dns-07.ns.aol.com. 116305 IN A 64.236.1.107
;; Query time: 7 msec
;; SERVER: 131.111.8.42#53(131.111.8.42)
;; WHEN: Wed Aug 8 16:18:21 2007
;; MSG SIZE rcvd: 339
; <<>> DiG 9.3.1 <<>> aol.com. txt
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 17924
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 4, ADDITIONAL: 2
;; QUESTION SECTION:
;aol.com. IN TXT
;; ANSWER SECTION:
aol.com. 300 IN TXT "v=spf1 ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
aol.com. 300 IN TXT "spf2.0/pra ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
;; AUTHORITY SECTION:
aol.com. 1679 IN NS dns-06.ns.aol.com.
aol.com. 1679 IN NS dns-07.ns.aol.com.
aol.com. 1679 IN NS dns-01.ns.aol.com.
aol.com. 1679 IN NS dns-02.ns.aol.com.
;; ADDITIONAL SECTION:
dns-01.ns.aol.com. 115044 IN A 64.12.51.132
dns-02.ns.aol.com. 115706 IN A 205.188.157.232
;; Query time: 80 msec
;; SERVER: 131.111.8.42#53(131.111.8.42)
;; WHEN: Wed Aug 8 16:20:12 2007
;; MSG SIZE rcvd: 512
;; Truncated, retrying in TCP mode.
; <<>> DiG 9.3.1 <<>> aol.com. any
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1265
;; flags: qr rd ra; QUERY: 1, ANSWER: 10, AUTHORITY: 4, ADDITIONAL: 4
;; QUESTION SECTION:
;aol.com. IN ANY
;; ANSWER SECTION:
aol.com. 298 IN TXT "v=spf1 ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
aol.com. 298 IN TXT "spf2.0/pra ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
aol.com. 1677 IN NS dns-07.ns.aol.com.
aol.com. 1677 IN NS dns-01.ns.aol.com.
aol.com. 1677 IN NS dns-02.ns.aol.com.
aol.com. 1677 IN NS dns-06.ns.aol.com.
aol.com. 2689 IN MX 15 mailin-02.mx.aol.com.
aol.com. 2689 IN MX 15 mailin-03.mx.aol.com.
aol.com. 2689 IN MX 15 mailin-04.mx.aol.com.
aol.com. 2689 IN MX 15 mailin-01.mx.aol.com.
;; AUTHORITY SECTION:
aol.com. 1677 IN NS dns-06.ns.aol.com.
aol.com. 1677 IN NS dns-07.ns.aol.com.
aol.com. 1677 IN NS dns-01.ns.aol.com.
aol.com. 1677 IN NS dns-02.ns.aol.com.
;; ADDITIONAL SECTION:
dns-01.ns.aol.com. 115042 IN A 64.12.51.132
dns-02.ns.aol.com. 115704 IN A 205.188.157.232
dns-06.ns.aol.com. 12272 IN A 149.174.54.153
dns-07.ns.aol.com. 116192 IN A 64.236.1.107
;; Query time: 1 msec
;; SERVER: 131.111.8.42#53(131.111.8.42)
;; WHEN: Wed Aug 8 16:20:14 2007
;; MSG SIZE rcvd: 707
; <<>> DiG 9.3.1 <<>> any aol.com. @64.12.51.132 +notcp +bufsize=1024
; (1 server found)
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45020
;; flags: qr aa rd; QUERY: 1, ANSWER: 13, AUTHORITY: 0, ADDITIONAL: 20
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;aol.com. IN ANY
;; ANSWER SECTION:
aol.com. 60 IN A 64.12.50.151
aol.com. 60 IN A 205.188.142.182
aol.com. 300 IN TXT "v=spf1 ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
aol.com. 300 IN TXT "spf2.0/pra ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
aol.com. 3600 IN MX 15 mailin-03.mx.aol.com.
aol.com. 3600 IN MX 15 mailin-04.mx.aol.com.
aol.com. 3600 IN MX 15 mailin-01.mx.aol.com.
aol.com. 3600 IN MX 15 mailin-02.mx.aol.com.
aol.com. 3600 IN NS dns-07.ns.aol.com.
aol.com. 3600 IN NS dns-01.ns.aol.com.
aol.com. 3600 IN NS dns-02.ns.aol.com.
aol.com. 3600 IN NS dns-06.ns.aol.com.
aol.com. 3600 IN SOA dns-01.ns.aol.com. hostmaster.aol.net. 2007080800 1800 300 604800 600
;; ADDITIONAL SECTION:
mailin-01.mx.aol.com. 300 IN A 205.188.158.121
mailin-01.mx.aol.com. 300 IN A 205.188.159.57
mailin-01.mx.aol.com. 300 IN A 64.12.137.184
mailin-01.mx.aol.com. 300 IN A 64.12.137.249
mailin-02.mx.aol.com. 300 IN A 205.188.155.89
mailin-02.mx.aol.com. 300 IN A 205.188.157.25
mailin-02.mx.aol.com. 300 IN A 64.12.137.89
mailin-02.mx.aol.com. 300 IN A 64.12.137.168
mailin-03.mx.aol.com. 300 IN A 205.188.157.217
mailin-03.mx.aol.com. 300 IN A 64.12.138.120
mailin-03.mx.aol.com. 300 IN A 64.12.138.153
mailin-04.mx.aol.com. 300 IN A 64.12.138.57
mailin-04.mx.aol.com. 300 IN A 64.12.138.88
mailin-04.mx.aol.com. 300 IN A 64.12.139.249
mailin-04.mx.aol.com. 300 IN A 205.188.159.216
dns-01.ns.aol.com. 3600 IN A 64.12.51.132
dns-02.ns.aol.com. 3600 IN A 205.188.157.232
dns-06.ns.aol.com. 3600 IN A 149.174.54.153
dns-07.ns.aol.com. 3600 IN A 64.236.1.107
;; Query time: 83 msec
;; SERVER: 64.12.51.132#53(64.12.51.132)
;; WHEN: Wed Aug 8 16:24:53 2007
;; MSG SIZE rcvd: 988
Tony.
--
f.a.n.finch <dot at dotat.at> http://dotat.at/
IRISH SEA: SOUTHERLY, BACKING NORTHEASTERLY FOR A TIME, 3 OR 4. SLIGHT OR
MODERATE. SHOWERS. MODERATE OR GOOD, OCCASIONALLY POOR.
More information about the NANOG
mailing list