[dns-operations] google DNS returns different result

adi adi at postpi.org
Tue Jul 5 12:59:42 UTC 2016 

I think, it's due to 'edns client subnet'. Opendns should gives
identical results if queried from the same ip. It is possible
they simply drop edns subnet data from client, though.

Regards,

P.Y. Adi Prasaja

On Mon, Jul 04, 2016 at 11:02:04AM -0400, Robert Edmonds wrote:
>Interestingly, https://cachecheck.opendns.com/ shows that www.qq.com is
>a CNAME to qq.com.edgesuite.net at all of OpenDNS's locations, except
>for Los Angeles, which shows the same 14.17.x.x and 59.x.x.x A-records
>in the original post below.
>
>TOURNAT Guillaume wrote:
>> It has been discussed several times about China "great firewall", which consists of altering DNS responses, among filtering IP connections.
>>
>> Searching google about "great firewall" you will find some links. As the note of Stephane Bortzmeyer : http://www.bortzmeyer.org/sichuan-pepper.html
>>
>>
>> > Le 4 juil. 2016 à 05:51, "yhpeng at orange.fr" <yhpeng at orange.fr> a écrit :
>> >
>> > Hi members,
>> >
>> > I dig www.qq.com from within a server in China.
>> > Most the other public DNS servers return a CNAME to akamai CDN.
>> > Only google's DNS returns a group of addresses which are China's IP.
>> > Do you know why? Thanks.
>> >
>> > $ dig www.qq.com @8.8.8.8
>> >
>> > ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.37.rc1.el6_7.7 <<>> www.qq.com @8.8.8.8
>> > ;; global options: +cmd
>> > ;; Got answer:
>> > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 37376
>> > ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
>> >
>> > ;; QUESTION SECTION:
>> > ;www.qq.com.                    IN      A
>> >
>> > ;; ANSWER SECTION:
>> > www.qq.com.             299     IN      A       14.17.32.211
>> > www.qq.com.             299     IN      A       59.37.96.63
>> > www.qq.com.             299     IN      A       14.17.42.40
>> >
>> > ;; Query time: 52 msec
>> > ;; SERVER: 8.8.8.8#53(8.8.8.8)
>> > ;; WHEN: Mon Jul  4 10:54:29 2016
>> > ;; MSG SIZE  rcvd: 76
>> >
>> >
>> > level3's DNS:
>> >
>> > $ dig www.qq.com @209.244.0.3
>> >
>> > ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.37.rc1.el6_7.7 <<>> www.qq.com @209.244.0.3
>> > ;; global options: +cmd
>> > ;; Got answer:
>> > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8533
>> > ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
>> >
>> > ;; QUESTION SECTION:
>> > ;www.qq.com.                    IN      A
>> >
>> > ;; ANSWER SECTION:
>> > www.qq.com.             277     IN      CNAME   qq.com.edgesuite.net.
>> > qq.com.edgesuite.net.   1590    IN      CNAME   a1574.b.akamai.net.
>> > a1574.b.akamai.net.     14      IN      A       173.205.77.26
>> > a1574.b.akamai.net.     14      IN      A       173.205.76.243
>> >
>> > ;; Query time: 166 msec
>> > ;; SERVER: 209.244.0.3#53(209.244.0.3)
>> > ;; WHEN: Mon Jul  4 10:59:26 2016
>> > ;; MSG SIZE  rcvd: 123
>> >
>> >
>> > Comodo's DNS:
>> >
>> > $ dig www.qq.com @8.26.56.26
>> >
>> > ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.37.rc1.el6_7.7 <<>> www.qq.com @8.26.56.26
>> > ;; global options: +cmd
>> > ;; Got answer:
>> > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 31750
>> > ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
>> >
>> > ;; QUESTION SECTION:
>> > ;www.qq.com.                    IN      A
>> >
>> > ;; ANSWER SECTION:
>> > www.qq.com.             108     IN      CNAME   qq.com.edgesuite.net.
>> > qq.com.edgesuite.net.   1534    IN      CNAME   a1574.b.akamai.net.
>> > a1574.b.akamai.net.     3       IN      A       2.21.75.67
>> > a1574.b.akamai.net.     3       IN      A       2.21.75.66
>> >
>> > ;; Query time: 279 msec
>> > ;; SERVER: 8.26.56.26#53(8.26.56.26)
>> > ;; WHEN: Mon Jul  4 11:01:53 2016
>> > ;; MSG SIZE  rcvd: 123
>> >
>> >
>> > regards.
>> > _______________________________________________
>> > dns-operations mailing list
>> > dns-operations at lists.dns-oarc.net
>> > https://lists.dns-oarc.net/mailman/listinfo/dns-operations
>> > dns-operations mailing list
>> > https://lists.dns-oarc.net/mailman/listinfo/dns-operations
>>
>> _______________________________________________
>> dns-operations mailing list
>> dns-operations at lists.dns-oarc.net
>> https://lists.dns-oarc.net/mailman/listinfo/dns-operations
>> dns-operations mailing list
>> https://lists.dns-oarc.net/mailman/listinfo/dns-operations
>
>-- 
>Robert Edmonds
>_______________________________________________
>dns-operations mailing list
>dns-operations at lists.dns-oarc.net
>https://lists.dns-oarc.net/mailman/listinfo/dns-operations
>dns-operations mailing list
>https://lists.dns-oarc.net/mailman/listinfo/dns-operations

More information about the dns-operations mailing list