[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[public-dns-discuss] Re: Google DNS resolving Google.com to...London?!



Thanks for the reply.

It's Windows, so I'm using nslookup, but with and without 8.8.8.8, I get 

edns0-client-subnet 38.131.218.243/32

and

"{'ecs_payload':{'family':'1','optcode':'0x08','cc':'US','ip':'38.131.218.0','mask':'24','scope':'0'},'ecs':'True','ts':'1515088007.77','recursive':{'cc':'US','srcip':'74.125.113.133','sport':'56313'}}"

Full results below. I'll not bother to obfuscate my ISP's CGNed public IP, as it's kinda pointless anyway. ;)

> set type=txt
> o-o.myaddr.test.l.google.com
Server:  router
Address:  192.168.56.1

Non-authoritative answer:
o-o.myaddr.test.l.google.com    text =

        "74.125.113.145"
o-o.myaddr.test.l.google.com    text =

        "edns0-client-subnet 38.131.218.243/32"
> o-o.myaddr.test.l.google.com 8.8.8.8
Server:  [8.8.8.8]
Address:  8.8.8.8

Non-authoritative answer:
o-o.myaddr.test.l.google.com    text =

        "74.125.183.72"
o-o.myaddr.test.l.google.com    text =

        "edns0-client-subnet 38.131.218.243/32"
> edns-client-sub.net
Server:  router
Address:  192.168.56.1

Non-authoritative answer:
edns-client-sub.net     text =

        "{'ecs_payload':{'family':'1','optcode':'0x08','cc':'US','ip':'38.131.218.0','mask':'24','scope':'0'},'ecs':'True','ts':'1515087998.46','recursive':{'cc':'US','srcip':'173.194.94.129','sport':'50825'}}"
> edns-client-sub.net 8.8.8.8
Server:  [8.8.8.8]
Address:  8.8.8.8

Non-authoritative answer:
edns-client-sub.net     text =

        "{'ecs_payload':{'family':'1','optcode':'0x08','cc':'US','ip':'38.131.218.0','mask':'24','scope':'0'},'ecs':'True','ts':'1515088007.77','recursive':{'cc':'US','srcip':'74.125.113.133','sport':'56313'}}"


On Thursday, January 4, 2018 at 1:48:20 AM UTC-5, Alex Dupuy wrote:
What do you see when you make the following dig queries?

dig TXT o-o.myaddr.test.l.google.com. # (with @8.8.8.8 and without, using default resolver configuration)
dig TXT edns-client-sub.net. # (with and without @8.8.8.8)

These would reveal what EDNS Client Subnet (ECS) data is being sent to authorities. Perhaps somehow your DNS requests are going out with ECS value of 100.64.103.1 (which is a Carrier Grade NAT address, no more meaningful than 192.168.56.1.

--
--
========================================================
You received this message because you are subscribed to the Google
Groups "public-dns-discuss" group.
To post to this group, send email to public-dns-discuss AT googlegroups.com
To unsubscribe from this group, send email to
public-dns-discuss+unsubscribe AT googlegroups.com
For more options, visit this group at
http://groups.google.com/group/public-dns-discuss
For more information on Google Public DNS, please visit
http://developers.google.com/speed/public-dns
========================================================
---
You received this message because you are subscribed to the Google Groups "public-dns-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to public-dns-discuss+unsubscribe AT googlegroups.com.
For more options, visit https://groups.google.com/d/optout.