North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: large organization nameservers sending icmp packets to dns servers.

  • From: Tony Finch
  • Date: Wed Aug 08 12:58:07 2007

On Tue, 7 Aug 2007, [email protected] wrote:
>
> they *already* don't answer with the txt records if you try to do a
> 'dig aol.com any' because that 512 and the 497 returned on a 'dig aol.com mx'
> won't fit in one 512-byte packet.

Wrong! You're probably not getting the txt records because you don't have
them in your cache. See the following four queries for an example.
(First three from my cache, fourth from AOL.)


; <<>> DiG 9.3.1 <<>> aol.com any
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15075
;; flags: qr rd ra; QUERY: 1, ANSWER: 8, AUTHORITY: 4, ADDITIONAL: 4

;; QUESTION SECTION:
;aol.com.                       IN      ANY

;; ANSWER SECTION:
aol.com.                1790    IN      NS      dns-06.ns.aol.com.
aol.com.                1790    IN      NS      dns-07.ns.aol.com.
aol.com.                1790    IN      NS      dns-01.ns.aol.com.
aol.com.                1790    IN      NS      dns-02.ns.aol.com.
aol.com.                2802    IN      MX      15 mailin-04.mx.aol.com.
aol.com.                2802    IN      MX      15 mailin-01.mx.aol.com.
aol.com.                2802    IN      MX      15 mailin-02.mx.aol.com.
aol.com.                2802    IN      MX      15 mailin-03.mx.aol.com.

;; AUTHORITY SECTION:
aol.com.                1790    IN      NS      dns-02.ns.aol.com.
aol.com.                1790    IN      NS      dns-06.ns.aol.com.
aol.com.                1790    IN      NS      dns-07.ns.aol.com.
aol.com.                1790    IN      NS      dns-01.ns.aol.com.

;; ADDITIONAL SECTION:
dns-01.ns.aol.com.      115155  IN      A       64.12.51.132
dns-02.ns.aol.com.      115817  IN      A       205.188.157.232
dns-06.ns.aol.com.      12385   IN      A       149.174.54.153
dns-07.ns.aol.com.      116305  IN      A       64.236.1.107

;; Query time: 7 msec
;; SERVER: 131.111.8.42#53(131.111.8.42)
;; WHEN: Wed Aug  8 16:18:21 2007
;; MSG SIZE  rcvd: 339


; <<>> DiG 9.3.1 <<>> aol.com. txt
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 17924
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 4, ADDITIONAL: 2

;; QUESTION SECTION:
;aol.com.                       IN      TXT

;; ANSWER SECTION:
aol.com.                300     IN      TXT     "v=spf1 ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
aol.com.                300     IN      TXT     "spf2.0/pra ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"

;; AUTHORITY SECTION:
aol.com.                1679    IN      NS      dns-06.ns.aol.com.
aol.com.                1679    IN      NS      dns-07.ns.aol.com.
aol.com.                1679    IN      NS      dns-01.ns.aol.com.
aol.com.                1679    IN      NS      dns-02.ns.aol.com.

;; ADDITIONAL SECTION:
dns-01.ns.aol.com.      115044  IN      A       64.12.51.132
dns-02.ns.aol.com.      115706  IN      A       205.188.157.232

;; Query time: 80 msec
;; SERVER: 131.111.8.42#53(131.111.8.42)
;; WHEN: Wed Aug  8 16:20:12 2007
;; MSG SIZE  rcvd: 512


;; Truncated, retrying in TCP mode.
; <<>> DiG 9.3.1 <<>> aol.com. any
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1265
;; flags: qr rd ra; QUERY: 1, ANSWER: 10, AUTHORITY: 4, ADDITIONAL: 4

;; QUESTION SECTION:
;aol.com.                       IN      ANY

;; ANSWER SECTION:
aol.com.                298     IN      TXT     "v=spf1 ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
aol.com.                298     IN      TXT     "spf2.0/pra ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
aol.com.                1677    IN      NS      dns-07.ns.aol.com.
aol.com.                1677    IN      NS      dns-01.ns.aol.com.
aol.com.                1677    IN      NS      dns-02.ns.aol.com.
aol.com.                1677    IN      NS      dns-06.ns.aol.com.
aol.com.                2689    IN      MX      15 mailin-02.mx.aol.com.
aol.com.                2689    IN      MX      15 mailin-03.mx.aol.com.
aol.com.                2689    IN      MX      15 mailin-04.mx.aol.com.
aol.com.                2689    IN      MX      15 mailin-01.mx.aol.com.

;; AUTHORITY SECTION:
aol.com.                1677    IN      NS      dns-06.ns.aol.com.
aol.com.                1677    IN      NS      dns-07.ns.aol.com.
aol.com.                1677    IN      NS      dns-01.ns.aol.com.
aol.com.                1677    IN      NS      dns-02.ns.aol.com.

;; ADDITIONAL SECTION:
dns-01.ns.aol.com.      115042  IN      A       64.12.51.132
dns-02.ns.aol.com.      115704  IN      A       205.188.157.232
dns-06.ns.aol.com.      12272   IN      A       149.174.54.153
dns-07.ns.aol.com.      116192  IN      A       64.236.1.107

;; Query time: 1 msec
;; SERVER: 131.111.8.42#53(131.111.8.42)
;; WHEN: Wed Aug  8 16:20:14 2007
;; MSG SIZE  rcvd: 707


; <<>> DiG 9.3.1 <<>> any aol.com. @64.12.51.132 +notcp +bufsize=1024
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45020
;; flags: qr aa rd; QUERY: 1, ANSWER: 13, AUTHORITY: 0, ADDITIONAL: 20

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;aol.com.                       IN      ANY

;; ANSWER SECTION:
aol.com.                60      IN      A       64.12.50.151
aol.com.                60      IN      A       205.188.142.182
aol.com.                300     IN      TXT     "v=spf1 ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
aol.com.                300     IN      TXT     "spf2.0/pra ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"
aol.com.                3600    IN      MX      15 mailin-03.mx.aol.com.
aol.com.                3600    IN      MX      15 mailin-04.mx.aol.com.
aol.com.                3600    IN      MX      15 mailin-01.mx.aol.com.
aol.com.                3600    IN      MX      15 mailin-02.mx.aol.com.
aol.com.                3600    IN      NS      dns-07.ns.aol.com.
aol.com.                3600    IN      NS      dns-01.ns.aol.com.
aol.com.                3600    IN      NS      dns-02.ns.aol.com.
aol.com.                3600    IN      NS      dns-06.ns.aol.com.
aol.com.                3600    IN      SOA     dns-01.ns.aol.com. hostmaster.aol.net. 2007080800 1800 300 604800 600

;; ADDITIONAL SECTION:
mailin-01.mx.aol.com.   300     IN      A       205.188.158.121
mailin-01.mx.aol.com.   300     IN      A       205.188.159.57
mailin-01.mx.aol.com.   300     IN      A       64.12.137.184
mailin-01.mx.aol.com.   300     IN      A       64.12.137.249
mailin-02.mx.aol.com.   300     IN      A       205.188.155.89
mailin-02.mx.aol.com.   300     IN      A       205.188.157.25
mailin-02.mx.aol.com.   300     IN      A       64.12.137.89
mailin-02.mx.aol.com.   300     IN      A       64.12.137.168
mailin-03.mx.aol.com.   300     IN      A       205.188.157.217
mailin-03.mx.aol.com.   300     IN      A       64.12.138.120
mailin-03.mx.aol.com.   300     IN      A       64.12.138.153
mailin-04.mx.aol.com.   300     IN      A       64.12.138.57
mailin-04.mx.aol.com.   300     IN      A       64.12.138.88
mailin-04.mx.aol.com.   300     IN      A       64.12.139.249
mailin-04.mx.aol.com.   300     IN      A       205.188.159.216
dns-01.ns.aol.com.      3600    IN      A       64.12.51.132
dns-02.ns.aol.com.      3600    IN      A       205.188.157.232
dns-06.ns.aol.com.      3600    IN      A       149.174.54.153
dns-07.ns.aol.com.      3600    IN      A       64.236.1.107

;; Query time: 83 msec
;; SERVER: 64.12.51.132#53(64.12.51.132)
;; WHEN: Wed Aug  8 16:24:53 2007
;; MSG SIZE  rcvd: 988


Tony.
-- 
f.a.n.finch  <[email protected]>  http://dotat.at/
IRISH SEA: SOUTHERLY, BACKING NORTHEASTERLY FOR A TIME, 3 OR 4. SLIGHT OR
MODERATE. SHOWERS. MODERATE OR GOOD, OCCASIONALLY POOR.