- 论坛徽章:
- 18
|
从27号开始,又一次大面积的封杀Google IP,现在部分Google服务可以使用,但是developer.android.com就是一直上不去.
dig @8.8.8.8 developer.android.com
; <<>> DiG 9.10.3-P3-RedHat-9.10.3-10.P3.fc23 <<>> @8.8.8.8 developer.android.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5912
;; flags: qr rd ra; QUERY: 1, ANSWER: 8, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;developer.android.com. IN A
;; ANSWER SECTION:
developer.android.com. 7199 IN CNAME www3.l.google.com.
www3.l.google.com. 899 IN CNAME www3-china.l.google.com.
www3-china.l.google.com. 179 IN A 74.125.23.138
www3-china.l.google.com. 179 IN A 74.125.23.101
www3-china.l.google.com. 179 IN A 74.125.23.139
www3-china.l.google.com. 179 IN A 74.125.23.102
www3-china.l.google.com. 179 IN A 74.125.23.113
www3-china.l.google.com. 179 IN A 74.125.23.100
;; Query time: 122 msec
;; SERVER: 8.8.8.8#53(8.8.8.
;; WHEN: Thu Jan 28 10:58:43 CST 2016
;; MSG SIZE rcvd: 199
确实发现是被封锁的Google IP
找了中华电信和香港的DNS,以及opendns.都是返回的 Goolge被封锁的IP
之后又找到了根DNS
dig @192.228.79.201 developer.android.com
; <<>> DiG 9.10.3-P3-RedHat-9.10.3-10.P3.fc23 <<>> @192.228.79.201 developer.android.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30921
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 13, ADDITIONAL: 16
;; WARNING: recursion requested but not available
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;developer.android.com. IN A
;; AUTHORITY SECTION:
com. 172800 IN NS h.gtld-servers.net.
com. 172800 IN NS l.gtld-servers.net.
com. 172800 IN NS g.gtld-servers.net.
com. 172800 IN NS e.gtld-servers.net.
com. 172800 IN NS b.gtld-servers.net.
com. 172800 IN NS c.gtld-servers.net.
com. 172800 IN NS k.gtld-servers.net.
com. 172800 IN NS d.gtld-servers.net.
com. 172800 IN NS i.gtld-servers.net.
com. 172800 IN NS m.gtld-servers.net.
com. 172800 IN NS f.gtld-servers.net.
com. 172800 IN NS j.gtld-servers.net.
com. 172800 IN NS a.gtld-servers.net.
;; ADDITIONAL SECTION:
a.gtld-servers.net. 172800 IN A 192.5.6.30
b.gtld-servers.net. 172800 IN A 192.33.14.30
c.gtld-servers.net. 172800 IN A 192.26.92.30
d.gtld-servers.net. 172800 IN A 192.31.80.30
e.gtld-servers.net. 172800 IN A 192.12.94.30
f.gtld-servers.net. 172800 IN A 192.35.51.30
g.gtld-servers.net. 172800 IN A 192.42.93.30
h.gtld-servers.net. 172800 IN A 192.54.112.30
i.gtld-servers.net. 172800 IN A 192.43.172.30
j.gtld-servers.net. 172800 IN A 192.48.79.30
k.gtld-servers.net. 172800 IN A 192.52.178.30
l.gtld-servers.net. 172800 IN A 192.41.162.30
m.gtld-servers.net. 172800 IN A 192.55.83.30
a.gtld-servers.net. 172800 IN AAAA 2001:503:a83e::2:30
b.gtld-servers.net. 172800 IN AAAA 2001:503:231d::2:30
;; Query time: 218 msec
;; SERVER: 192.228.79.201#53(192.228.79.201)
;; WHEN: Thu Jan 28 11:04:36 CST 2016
;; MSG SIZE rcvd: 538
上面的信息看不太懂,是解析后的 developer.android.com IP吗?
IP可以ping 通,但是https://developer.android.com就是访问不了
后来又想,这个返回的结果是否真实呢?不是说GFW在国际网关出口做IDS吗? 那么dig 直接查询根的结果是污染过的吗?
又问:网上的GoogleIP都是怎么查来的? 网上有配置HOSTS的内容,有github自动搜索可用IP的源码,但是就没说IP哪来的?(我看不懂Python源码)也是通过查询DNS服务器来的吗?
网上下来的hosts文件,轻则几千行,甚至上万行,但是基本都是一个IP,对应着不同的域名
类似
IP sk.wikipedia.org
IP sl.wikipedia.org
IP sm.wikipedia.org
IP sn.wikipedia.org
IP so.wikipedia.org
IP sq.wikipedia.org
IP sr.wikipedia.org
IP srn.wikipedia.org
IP ss.wikipedia.org
IP st.wikipedia.org
这个二级\三级域名是怎么找出来的? |
|