<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFCC" text="#000000">
Hello<br>
<br>
How will this work if you use e.g.-t a?<br>
<br>
dig -t any will show the content of the local cache, so this just
means your cache is empty.<br>
<br>
<br>
<div class="moz-cite-prefix">On 26/07/12 11:28, Pavel Urban wrote:<br>
</div>
<blockquote cite="mid:50110DC0.9040702@pupu.cz" type="cite">Hello,
<br>
<br>
one of our customers asked us to take a look at strange problem.
One address seems to 'work' in Germany, but not here. So I've
tried it and found this:
<br>
<br>
[pupu@aphrael ~]$ dig <a class="moz-txt-link-abbreviated" href="http://www.thomascook.de">www.thomascook.de</a> -t any
<br>
<br>
; <<>> DiG 9.9.1-P1-RedHat-9.9.1-2.P1.fc17
<<>> <a class="moz-txt-link-abbreviated" href="http://www.thomascook.de">www.thomascook.de</a> -t any
<br>
;; global options: +cmd
<br>
;; Got answer:
<br>
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id:
23750
<br>
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL:
2
<br>
<br>
;; OPT PSEUDOSECTION:
<br>
; EDNS: version: 0, flags:; udp: 1280
<br>
;; QUESTION SECTION:
<br>
;www.thomascook.de. IN ANY
<br>
<br>
;; ANSWER SECTION:
<br>
<a class="moz-txt-link-abbreviated" href="http://www.thomascook.de">www.thomascook.de</a>. 600 IN CNAME
<a class="moz-txt-link-abbreviated" href="http://www.thomascook.de.nsatc.net">www.thomascook.de.nsatc.net</a>.
<br>
<br>
;; ADDITIONAL SECTION:
<br>
<a class="moz-txt-link-abbreviated" href="http://www.thomascook.de.nsatc.net">www.thomascook.de.nsatc.net</a>. 300 IN A 127.0.0.2
<br>
<br>
;; Query time: 75 msec
<br>
;; SERVER: 192.168.96.11#53(192.168.96.11)
<br>
;; WHEN: Thu Jul 26 11:10:41 2012
<br>
;; MSG SIZE rcvd: 103
<br>
<br>
Well, that probably 'doesn't work', but it shouldn't work
worldwide. The strange thing appears when I try to ask
differently. First, I check authorities for this address.
<br>
<br>
[root@hactar ~]# dig <a class="moz-txt-link-abbreviated" href="http://www.thomascook.de">www.thomascook.de</a> -t any +trace
<br>
<br>
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6
<<>> <a class="moz-txt-link-abbreviated" href="http://www.thomascook.de">www.thomascook.de</a> -t any +trace
<br>
;; global options: +cmd
<br>
. 449874 IN NS
j.root-servers.net.
<br>
. 449874 IN NS
k.root-servers.net.
<br>
. 449874 IN NS
l.root-servers.net.
<br>
. 449874 IN NS
m.root-servers.net.
<br>
. 449874 IN NS
a.root-servers.net.
<br>
. 449874 IN NS
b.root-servers.net.
<br>
. 449874 IN NS
c.root-servers.net.
<br>
. 449874 IN NS
d.root-servers.net.
<br>
. 449874 IN NS
e.root-servers.net.
<br>
. 449874 IN NS
f.root-servers.net.
<br>
. 449874 IN NS
g.root-servers.net.
<br>
. 449874 IN NS
h.root-servers.net.
<br>
. 449874 IN NS
i.root-servers.net.
<br>
;; Received 512 bytes from 212.24.128.8#53(212.24.128.8) in 2882
ms
<br>
<br>
de. 172800 IN NS a.nic.de.
<br>
de. 172800 IN NS f.nic.de.
<br>
de. 172800 IN NS l.de.net.
<br>
de. 172800 IN NS n.de.net.
<br>
de. 172800 IN NS s.de.net.
<br>
de. 172800 IN NS z.nic.de.
<br>
;; Received 349 bytes from 198.41.0.4#53(198.41.0.4) in 1294 ms
<br>
<br>
thomascook.de. 86400 IN NS
koeln.nic.xlink.net.
<br>
thomascook.de. 86400 IN NS
frankfurt.nic.xlink.net.
<br>
;; Received 105 bytes from 2001:678:2::53#53(2001:678:2::53) in
515 ms
<br>
<br>
<a class="moz-txt-link-abbreviated" href="http://www.thomascook.de">www.thomascook.de</a>. 600 IN CNAME
<a class="moz-txt-link-abbreviated" href="http://www.thomascook.de.nsatc.net">www.thomascook.de.nsatc.net</a>.
<br>
thomascook.de. 1800 IN NS
frankfurt.nic.xlink.net.
<br>
thomascook.de. 1800 IN NS
koeln.nic.xlink.net.
<br>
;; Received 162 bytes from 193.141.43.129#53(193.141.43.129) in 37
ms
<br>
<br>
...and then I try to ask them.
<br>
<br>
[root@hactar ~]# dig @koeln.nic.xlink.net
<a class="moz-txt-link-abbreviated" href="http://www.thomascook.de.nsatc.net">www.thomascook.de.nsatc.net</a> -t any
<br>
<br>
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6
<<>> @koeln.nic.xlink.net <a class="moz-txt-link-abbreviated" href="http://www.thomascook.de.nsatc.net">www.thomascook.de.nsatc.net</a>
-t any
<br>
; (1 server found)
<br>
;; global options: +cmd
<br>
;; Got answer:
<br>
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id:
28421
<br>
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 5,
ADDITIONAL: 5
<br>
<br>
;; QUESTION SECTION:
<br>
;www.thomascook.de.nsatc.net. IN ANY
<br>
<br>
;; ANSWER SECTION:
<br>
<a class="moz-txt-link-abbreviated" href="http://www.thomascook.de.nsatc.net">www.thomascook.de.nsatc.net</a>. 300 IN A 87.124.38.165
<br>
<br>
;; AUTHORITY SECTION:
<br>
nsatc.net. 172800 IN NS uk-2.ns.nsatc.net.
<br>
nsatc.net. 172800 IN NS de-6.ns.nsatc.net.
<br>
nsatc.net. 172800 IN NS b.ns.nsatc.net.
<br>
nsatc.net. 172800 IN NS it-1.ns.nsatc.net.
<br>
nsatc.net. 172800 IN NS e.ns.nsatc.net.
<br>
<br>
;; ADDITIONAL SECTION:
<br>
uk-2.ns.nsatc.net. 172800 IN A 8.12.199.51
<br>
de-6.ns.nsatc.net. 172800 IN A 213.200.97.117
<br>
b.ns.nsatc.net. 172800 IN A 207.123.33.51
<br>
it-1.ns.nsatc.net. 172800 IN A 8.12.209.47
<br>
e.ns.nsatc.net. 172800 IN A 212.187.162.134
<br>
<br>
;; Query time: 36 msec
<br>
;; SERVER: 194.120.12.245#53(194.120.12.245)
<br>
;; WHEN: Thu Jul 26 11:19:36 2012
<br>
;; MSG SIZE rcvd: 233
<br>
<br>
My guess is that ISP for thomascook.de tried to fool...err, fix
the problem for his customer by adding some extra zones to his
resolvers. My questions are - 'how is this supposed to work?' and
'it this kind of dns blacklisting common?'
<br>
<br>
</blockquote>
<br>
<pre class="moz-signature" cols="72">--
Best regards
Sten Carlsen
No improvements come from shouting:
"MALE BOVINE MANURE!!!"
</pre>
</body>
</html>