[ale] cacheing DNS?
John Heim
john at johnheim.net
Wed May 9 17:59:15 EDT 2012
>
>Because they sent a test packet to your name server and it recursively
>queried their name server sending them a packet. What, exactly, was in
>that request, I don't know. I just tested my name server and it said it
>was closed, as it should.
Well, now its saying closed for my server too. I don't *think* I changed
anything. I wasted a lot of time on this, that is for sure.
Just for the archives, I ran the following test:
1. Enabled a packet sniffer on another DNS server I am responsible out there
in the wild. Call it bogus.org.
2. Logged onto my machine at home, call it fictional.isp.net.
3. Directed a dig at the supposedly open name server, call it
ns1.example.com for a random address on bogus.org.
$ dig @ns1.example.com dkslfk.bogus.org
At this point, packet sniffer on bogus.org shows nothing.
4. Logged onto a machine on the example.com LAN, call it
desktop.example.com.
5. Directed a dig at ns1.example.com for an address on bogus.org.
$ dig @ns1.example.com fusisjc.bogus.org
At this point, packets did show up on bogus.org. But they're supposed to.
More information about the Ale
mailing list