[dns-operations] google DNS returns different result

TOURNAT Guillaume gtournat at tibco.fr
Mon Jul 4 05:56:50 UTC 2016 

It has been discussed several times about China "great firewall", which consists of altering DNS responses, among filtering IP connections. 

Searching google about "great firewall" you will find some links. As the note of Stephane Bortzmeyer : http://www.bortzmeyer.org/sichuan-pepper.html


> Le 4 juil. 2016 à 05:51, "yhpeng at orange.fr" <yhpeng at orange.fr> a écrit :
> 
> Hi members,
> 
> I dig www.qq.com from within a server in China.
> Most the other public DNS servers return a CNAME to akamai CDN.
> Only google's DNS returns a group of addresses which are China's IP.
> Do you know why? Thanks.
> 
> $ dig www.qq.com @8.8.8.8
> 
> ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.37.rc1.el6_7.7 <<>> www.qq.com @8.8.8.8
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 37376
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
> 
> ;; QUESTION SECTION:
> ;www.qq.com.                    IN      A
> 
> ;; ANSWER SECTION:
> www.qq.com.             299     IN      A       14.17.32.211
> www.qq.com.             299     IN      A       59.37.96.63
> www.qq.com.             299     IN      A       14.17.42.40
> 
> ;; Query time: 52 msec
> ;; SERVER: 8.8.8.8#53(8.8.8.8)
> ;; WHEN: Mon Jul  4 10:54:29 2016
> ;; MSG SIZE  rcvd: 76
> 
> 
> level3's DNS:
> 
> $ dig www.qq.com @209.244.0.3
> 
> ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.37.rc1.el6_7.7 <<>> www.qq.com @209.244.0.3
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8533
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
> 
> ;; QUESTION SECTION:
> ;www.qq.com.                    IN      A
> 
> ;; ANSWER SECTION:
> www.qq.com.             277     IN      CNAME   qq.com.edgesuite.net.
> qq.com.edgesuite.net.   1590    IN      CNAME   a1574.b.akamai.net.
> a1574.b.akamai.net.     14      IN      A       173.205.77.26
> a1574.b.akamai.net.     14      IN      A       173.205.76.243
> 
> ;; Query time: 166 msec
> ;; SERVER: 209.244.0.3#53(209.244.0.3)
> ;; WHEN: Mon Jul  4 10:59:26 2016
> ;; MSG SIZE  rcvd: 123
> 
> 
> Comodo's DNS:
> 
> $ dig www.qq.com @8.26.56.26
> 
> ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.37.rc1.el6_7.7 <<>> www.qq.com @8.26.56.26
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 31750
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
> 
> ;; QUESTION SECTION:
> ;www.qq.com.                    IN      A
> 
> ;; ANSWER SECTION:
> www.qq.com.             108     IN      CNAME   qq.com.edgesuite.net.
> qq.com.edgesuite.net.   1534    IN      CNAME   a1574.b.akamai.net.
> a1574.b.akamai.net.     3       IN      A       2.21.75.67
> a1574.b.akamai.net.     3       IN      A       2.21.75.66
> 
> ;; Query time: 279 msec
> ;; SERVER: 8.26.56.26#53(8.26.56.26)
> ;; WHEN: Mon Jul  4 11:01:53 2016
> ;; MSG SIZE  rcvd: 123
> 
> 
> regards.
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.dns-oarc.net
> https://lists.dns-oarc.net/mailman/listinfo/dns-operations
> dns-operations mailing list
> https://lists.dns-oarc.net/mailman/listinfo/dns-operations

More information about the dns-operations mailing list