[dns-operations] google public dns (was: Re: bind-9.9.4-P1 crash)

Robert Edmonds edmonds at mycre.ws
Wed Dec 18 18:29:13 UTC 2013


Dnsbed Ops wrote:
> In fact our nameservers have blocked a lot of IPs from google:
> 
> DROP       all  --  173.194.99.0/24      0.0.0.0/0
> DROP       all  --  74.125.16.210        0.0.0.0/0
> DROP       all  --  74.125.41.17         0.0.0.0/0
> [...etc...]
> DROP       all  --  74.125.42.19         0.0.0.0/0
> DROP       all  --  74.125.42.17         0.0.0.0/0
> DROP       all  --  74.125.177.17        0.0.0.0/0

those IPs are used by google public DNS.

https://developers.google.com/speed/public-dns/faq#locations

> All the queries from those IPs are going with this style:
> 74.125.191.84#63255: query: qalljrwww.byw.so
> 74.125.41.20#53581: query: womciswww.byw.so

dnsbed's nameservers appear to be authoritative for byw.so...

> And the count is huge. So I dropped them.

it is estimated that "some 7% of the entire Internet user base" uses
google public DNS.  it is probably a bad idea for an authoritative DNS
service to block google public DNS.

http://www.circleid.com/posts/20132216_who_uses_googles_public_dns/

-- 
Robert Edmonds



More information about the dns-operations mailing list