[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[public-dns-discuss] Re: using 'dig @ +subnet', edns0-client-subnet not working

Some services which send client IP addresses to authoritative name servers don't accept client-provided ECS. This is true as a matter of policy for OpenDNS (which correctly returns a response without ECS to indicate this).  Google Public DNS does accept client provided ECS but for technical reasons is not able to do so at many locations. If you use DNS over HTTPS, either directly or through the interactive dns.google.com web page, you can see the results for queries from the specific addresses, if all you need to do is confirm proper operation of ECS from your authoritative server.

From my checks, it appears that we are sending ECS to most AliDNS authoritative servers from most (but not all) locations.

You received this message because you are subscribed to the Google Groups "public-dns-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to public-dns-discuss+unsubscribe AT googlegroups.com.
To post to this group, send email to public-dns-discuss AT googlegroups.com.
Visit this group at https://groups.google.com/group/public-dns-discuss.
To view this discussion on the web visit https://groups.google.com/d/msgid/public-dns-discuss/0b32ef90-2741-4b02-855f-f5dfde86841b%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.