MoinQ:

kresd/issues/100.jp/tcpdumpについて、ここに記述してください。

kresd のログ JPサーバに100.jp Aを問い合わせて、返ってきたNSのadditionalに問い合わせを送っている。

[plan] plan '100.jp.' type 'A'
[resl]   => querying: '150.100.6.8' score: 10 zone cut: 'jp.' m12n: '100.JP.' type: 'A'
[resl]      optional: '192.50.43.53' score: 10 zone cut: 'jp.' m12n: '100.JP.' type: 'A'
[resl]      optional: '210.138.175.244' score: 10 zone cut: 'jp.' m12n: '100.JP.' type: 'A'
[resl]      optional: '156.154.100.5' score: 10 zone cut: 'jp.' m12n: '100.JP.' type: 'A'
[iter]   <= referral response, follow
[resl]   <= server: '150.100.6.8' rtt: 7 ms

[resl]   => querying: '210.188.224.9' score: 10 zone cut: '100.jp.' m12n: '100.JP.' type: 'A'
[iter]   <= rcode: NOERROR
[resl]   <= server: '210.188.224.9' rtt: 6 ms
[resl] finished: 4, queries: 1, mempool: 32800 B


1. TCPDUMP

これで証拠は十分か。

    192.168.10.7.48558 > f.dns.jp.domain: [bad udp cksum 0x6758 -> 0x2405!] 2004 [1au] A? 100.JP. ar: . OPT UDPsize=4096 (35)
00:28:09.570118 IP (tos 0x0, ttl 53, id 4622, offset 0, flags [none], proto UDP (17), length 144)
    f.dns.jp.domain > 192.168.10.7.48558: [udp sum ok] 2004- q: A? 100.JP. 0/2/3 ns: 100.jp. NS ns2.dns.ne.jp., 100.jp. NS ns1.dns.ne.jp. ar: ns1.dns.ne.jp. A 210.188.224.9, ns2.dns.ne.jp. A 210.224.172.13, . OPT UDPsize=4096 (116)
00:28:09.570387 IP (tos 0x0, ttl 64, id 31692, offset 0, flags [DF], proto UDP (17), length 63)
    192.168.10.7.53936 > ns2.dns.ne.jp.domain: [bad udp cksum 0x49da -> 0xc491!] 20387 [1au] A? 100.jp. ar: . OPT UDPsize=4096 (35)
00:28:09.584249 IP (tos 0x0, ttl 49, id 59730, offset 0, flags [none], proto UDP (17), length 122)
    ns2.dns.ne.jp.domain > 192.168.10.7.53936: [udp sum ok] 20387*- q: A? 100.jp. 1/2/1 100.jp. A 219.94.192.40 ns: 100.jp. NS ns2.dns.ne.jp., 100.jp. NS ns1.dns.ne.jp. ar: . OPT UDPsize=4096 (94)