DNSがよくわかる教科書 ch8 DNSの動作確認 (2/3)
- digコマンドを使った動作確認
- digコマンドの応用 - フルリゾルバーになって名前解決
- 例1) www.jprs.co.jpのAリソースレコードを問い合わせる
- 例2) www.ietf.orgのAAAAリソースレコードを問い合わせる
- www.ietf.org.をルートサーバーに問い合わせ
- www.ietf.org.をorg.のネームサーバーb0.org.afilias-nst.org.に問い合わせ
- ns1.hkg1.afilias-nst.info.をルートに問い合わせ
- ns1.hkg1.afilias-nst.info.をa2.info.afilias-nst.info.に問い合わせ
- ns1.hkg1.afilias-nst.info.をa0.dig.afilias-nst.info.に問い合わせ
- www.ietf.org.をns1.hkg1.afilias-nst.info.に問い合わせ
- www.ietf.org.cdn.cloudflare.net.をルートに問い合わせ
- www.ietf.org.cdn.cloudflare.net.をd.gtld-servers.net.に問い合わせ
- www.ietf.org.cdn.cloudflare.net.をns4.cloudflare.net.に問い合わせる
digコマンドを使った動作確認
権威サーバーの動作を確認する
- AAビット(authoritative answer)
- 応答したサーバーが問い合わされたドメインの情報に関する管理権限を持つことを示す
- cf. 管理権限をもたない情報: グルーレコード等
dig +norec @202.11.16.49 jprs.co.jp A
; <<>> DiG 9.11.3-1ubuntu1.9-Ubuntu <<>> +norec @202.11.16.49 jprs.co.jp A ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 3995 ;; flags: qr aa; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 9 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;jprs.co.jp. IN A ;; ANSWER SECTION: jprs.co.jp. 300 IN A 117.104.133.165 ;; AUTHORITY SECTION: jprs.co.jp. 86400 IN NS ns3.jprs.co.jp. jprs.co.jp. 86400 IN NS ns4.jprs.co.jp. jprs.co.jp. 86400 IN NS ns2.jprs.co.jp. jprs.co.jp. 86400 IN NS ns1.jprs.co.jp. ;; ADDITIONAL SECTION: ns1.jprs.co.jp. 86400 IN A 202.11.16.49 ns2.jprs.co.jp. 86400 IN A 202.11.16.59 ns3.jprs.co.jp. 86400 IN A 203.105.65.178 ns4.jprs.co.jp. 86400 IN A 203.105.65.181 ns1.jprs.co.jp. 86400 IN AAAA 2001:df0:8::a153 ns2.jprs.co.jp. 86400 IN AAAA 2001:df0:8::a253 ns3.jprs.co.jp. 86400 IN AAAA 2001:218:3001::a153 ns4.jprs.co.jp. 86400 IN AAAA 2001:218:3001::a253 ;; Query time: 5 msec ;; SERVER: 202.11.16.49#53(202.11.16.49) ;; WHEN: Sun Mar 22 16:31:16 JST 2020 ;; MSG SIZE rcvd: 303
- 権威サーバー
202.11.16.49(ns1.jprs.co.jp.)に問い合わせた - 権威サーバーへの問い合わせなので、非再帰的問い合わせ(
+norec)
flags: qr aa;
- rdがない = 非再起問い合わせ
- aa: authoritative answer
ns1.jprs.co.jp. がフルリゾルバーとして動作していないことの確認
- 権威サーバー(インターネット上で公開)が意図せずフルリゾルバーとして動作していることは深刻な危険性をはらむ
dig +norec @202.11.16.49 www.google.co.jp
; <<>> DiG 9.11.3-1ubuntu1.9-Ubuntu <<>> +norec @202.11.16.49 www.google.co.jp ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 63934 ;; flags: qr; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;www.google.co.jp. IN A ;; Query time: 5 msec ;; SERVER: 202.11.16.49#53(202.11.16.49) ;; WHEN: Sun Mar 22 16:36:23 JST 2020 ;; MSG SIZE rcvd: 45
status: REFUSED- リクエスト拒否
flags: qr;- ra (recursion available)がない = 名前解決要求をサポートしていない = フルリゾルバーでない
- 以上から、
202.11.16.49(ns1.jprs.co.jp.)はフルリゾルバーとしては動作していない
フルリゾルバーの動作を確認する
dig www.google.co.jp A
; <<>> DiG 9.11.3-1ubuntu1.9-Ubuntu <<>> www.google.co.jp ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20794 ;; flags: qr rd ad; QUERY: 1, ANSWER: 9, AUTHORITY: 0, ADDITIONAL: 0 ;; WARNING: recursion requested but not available ;; QUESTION SECTION: ;www.google.co.jp. IN A ;; ANSWER SECTION: www.google.co.jp. 0 IN A 172.217.26.3 ns1.google.com. 0 IN AAAA 2001:4860:4802:32::a ns2.google.com. 0 IN AAAA 2001:4860:4802:34::a ns3.google.com. 0 IN AAAA 2001:4860:4802:36::a ns4.google.com. 0 IN AAAA 2001:4860:4802:38::a ns1.google.com. 0 IN A 216.239.32.10 ns2.google.com. 0 IN A 216.239.34.10 ns3.google.com. 0 IN A 216.239.36.10 ns4.google.com. 0 IN A 216.239.38.10 ;; Query time: 10 msec ;; SERVER: 172.19.32.1#53(172.19.32.1) ;; WHEN: Sun Mar 22 16:39:41 JST 2020 ;; MSG SIZE rcvd: 354
status: NOERROR- 通常応答
www.google.co.jp. 0 IN A 172.217.26.3- Aリソースレコードを取得できている = 名前解決できている
;; SERVER: 172.19.32.1#53(172.19.32.1)
digコマンドの応用 - フルリゾルバーになって名前解決
例1) www.jprs.co.jpのAリソースレコードを問い合わせる
ルートサーバーに`問い合わせる
- ルートサーバーのIPアドレスはnamed.rootから拾ってくる
dig +norec @198.41.0.4 www.jprs.co.jp A
; <<>> DiG 9.11.3-1ubuntu1.9-Ubuntu <<>> +norec @198.41.0.4 www.jprs.co.jp A ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 9727 ;; flags: qr; QUERY: 1, ANSWER: 0, AUTHORITY: 8, ADDITIONAL: 16 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;www.jprs.co.jp. IN A ;; AUTHORITY SECTION: jp. 172800 IN NS a.dns.jp. jp. 172800 IN NS d.dns.jp. jp. 172800 IN NS e.dns.jp. jp. 172800 IN NS f.dns.jp. jp. 172800 IN NS h.dns.jp. jp. 172800 IN NS g.dns.jp. jp. 172800 IN NS c.dns.jp. jp. 172800 IN NS b.dns.jp. ;; ADDITIONAL SECTION: a.dns.jp. 172800 IN A 203.119.1.1 a.dns.jp. 172800 IN AAAA 2001:dc4::1 d.dns.jp. 172800 IN A 210.138.175.244 d.dns.jp. 172800 IN AAAA 2001:240::53 e.dns.jp. 172800 IN A 192.50.43.53 e.dns.jp. 172800 IN AAAA 2001:200:c000::35 f.dns.jp. 172800 IN A 150.100.6.8 f.dns.jp. 172800 IN AAAA 2001:2f8:0:100::153 h.dns.jp. 172800 IN A 65.22.40.25 h.dns.jp. 172800 IN AAAA 2a01:8840:1ba::25 g.dns.jp. 172800 IN A 203.119.40.1 c.dns.jp. 172800 IN A 156.154.100.5 c.dns.jp. 172800 IN AAAA 2001:502:ad09::5 b.dns.jp. 172800 IN A 202.12.30.131 b.dns.jp. 172800 IN AAAA 2001:dc2::1 ;; Query time: 67 msec ;; SERVER: 198.41.0.4#53(198.41.0.4) ;; WHEN: Sun Mar 22 16:44:38 JST 2020 ;; MSG SIZE rcvd: 499
flags: qr;- aaがない: 権威を持つ応答ではなく、委任情報を返す
- NSレコードと、そのグルーレコード
jp. の権威サーバーへ問い合わせる
- dを使ってみる
d.dns.jp. 172800 IN A 210.138.175.244
dig +norec @210.138.175.244 www.jprs.co.jp A
; <<>> DiG 9.11.3-1ubuntu1.9-Ubuntu <<>> +norec @210.138.175.244 www.jprs.co.jp A ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 37682 ;; flags: qr; QUERY: 1, ANSWER: 0, AUTHORITY: 4, ADDITIONAL: 9 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ; COOKIE: be87d6adc5a60c63ca2af4365e7717f39d44f7dc4955f36c (good) ;; QUESTION SECTION: ;www.jprs.co.jp. IN A ;; AUTHORITY SECTION: jprs.co.jp. 86400 IN NS ns4.jprs.co.jp. jprs.co.jp. 86400 IN NS ns1.jprs.co.jp. jprs.co.jp. 86400 IN NS ns2.jprs.co.jp. jprs.co.jp. 86400 IN NS ns3.jprs.co.jp. ;; ADDITIONAL SECTION: ns1.jprs.co.jp. 86400 IN A 202.11.16.49 ns2.jprs.co.jp. 86400 IN A 202.11.16.59 ns3.jprs.co.jp. 86400 IN A 203.105.65.178 ns4.jprs.co.jp. 86400 IN A 203.105.65.181 ns1.jprs.co.jp. 86400 IN AAAA 2001:df0:8::a153 ns2.jprs.co.jp. 86400 IN AAAA 2001:df0:8::a253 ns3.jprs.co.jp. 86400 IN AAAA 2001:218:3001::a153 ns4.jprs.co.jp. 86400 IN AAAA 2001:218:3001::a253 ;; Query time: 5 msec ;; SERVER: 210.138.175.244#53(210.138.175.244) ;; WHEN: Sun Mar 22 16:47:00 JST 2020 ;; MSG SIZE rcvd: 319
flags: qr;- aaなし: 委任情報のみ
jprs.co.jp.の権威サーバーへ問い合わせ
- 3を使ってみる
ns3.jprs.co.jp. 86400 IN A 203.105.65.178
dig +norec @203.105.65.178 www.jprs.co.jp A
; <<>> DiG 9.11.3-1ubuntu1.9-Ubuntu <<>> +norec @203.105.65.178 www.jprs.co.jp A ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 59976 ;; flags: qr aa; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 9 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;www.jprs.co.jp. IN A ;; ANSWER SECTION: www.jprs.co.jp. 300 IN A 117.104.133.165 ;; AUTHORITY SECTION: jprs.co.jp. 86400 IN NS ns4.jprs.co.jp. jprs.co.jp. 86400 IN NS ns3.jprs.co.jp. jprs.co.jp. 86400 IN NS ns2.jprs.co.jp. jprs.co.jp. 86400 IN NS ns1.jprs.co.jp. ;; ADDITIONAL SECTION: ns1.jprs.co.jp. 86400 IN A 202.11.16.49 ns2.jprs.co.jp. 86400 IN A 202.11.16.59 ns3.jprs.co.jp. 86400 IN A 203.105.65.178 ns4.jprs.co.jp. 86400 IN A 203.105.65.181 ns1.jprs.co.jp. 86400 IN AAAA 2001:df0:8::a153 ns2.jprs.co.jp. 86400 IN AAAA 2001:df0:8::a253 ns3.jprs.co.jp. 86400 IN AAAA 2001:218:3001::a153 ns4.jprs.co.jp. 86400 IN AAAA 2001:218:3001::a253 ;; Query time: 12 msec ;; SERVER: 203.105.65.178#53(203.105.65.178) ;; WHEN: Sun Mar 22 16:48:52 JST 2020 ;; MSG SIZE rcvd: 307
flags: qr aa;- 権威のある応答を得た
- Aレコード:
;; ANSWER SECTION: www.jprs.co.jp. 300 IN A 117.104.133.165
www.jprs.co.jpのIPアドレス117.104.133.165を得た。めでたし
例2) www.ietf.orgのAAAAリソースレコードを問い合わせる
- 実際のWebサイトの名前解決はもっと複雑
- 外部名
- CNAME
www.ietf.org.をルートサーバーに問い合わせ
drill -o rd @199.9.14.201 www.ietf.org AAAA
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 49814 ;; flags: qr ; QUERY: 1, ANSWER: 0, AUTHORITY: 6, ADDITIONAL: 12 ;; QUESTION SECTION: ;; www.ietf.org. IN AAAA ;; ANSWER SECTION: ;; AUTHORITY SECTION: org. 172800 IN NS a0.org.afilias-nst.info. org. 172800 IN NS a2.org.afilias-nst.info. org. 172800 IN NS c0.org.afilias-nst.info. org. 172800 IN NS b0.org.afilias-nst.org. org. 172800 IN NS d0.org.afilias-nst.org. org. 172800 IN NS b2.org.afilias-nst.org. ;; ADDITIONAL SECTION: a0.org.afilias-nst.info. 172800 IN A 199.19.56.1 a2.org.afilias-nst.info. 172800 IN A 199.249.112.1 b0.org.afilias-nst.org. 172800 IN A 199.19.54.1 b2.org.afilias-nst.org. 172800 IN A 199.249.120.1 c0.org.afilias-nst.info. 172800 IN A 199.19.53.1 d0.org.afilias-nst.org. 172800 IN A 199.19.57.1 a0.org.afilias-nst.info. 172800 IN AAAA 2001:500:e::1 a2.org.afilias-nst.info. 172800 IN AAAA 2001:500:40::1 b0.org.afilias-nst.org. 172800 IN AAAA 2001:500:c::1 b2.org.afilias-nst.org. 172800 IN AAAA 2001:500:48::1 c0.org.afilias-nst.info. 172800 IN AAAA 2001:500:b::1 d0.org.afilias-nst.org. 172800 IN AAAA 2001:500:f::1 ;; Query time: 107 msec ;; SERVER: 199.9.14.201 ;; WHEN: Tue Mar 24 00:42:22 2020 ;; MSG SIZE rcvd: 432
- 委任情報を得る
org. 172800 IN NS b0.org.afilias-nst.org. ... b0.org.afilias-nst.org. 172800 IN A 199.19.54.1
org.のネームサーバーのうち1つb0.org.afilias-nst.org.は199.19.54.1にある
www.ietf.org.をorg.のネームサーバーb0.org.afilias-nst.org.に問い合わせ
drill -o rd @199.19.54.1 www.ietf.org AAAA
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 60529 ;; flags: qr ; QUERY: 1, ANSWER: 0, AUTHORITY: 6, ADDITIONAL: 0 ;; QUESTION SECTION: ;; www.ietf.org. IN AAAA ;; ANSWER SECTION: ;; AUTHORITY SECTION: ietf.org. 86400 IN NS ns1.hkg1.afilias-nst.info. ietf.org. 86400 IN NS ns1.yyz1.afilias-nst.info. ietf.org. 86400 IN NS ns1.sea1.afilias-nst.info. ietf.org. 86400 IN NS ns1.mia1.afilias-nst.info. ietf.org. 86400 IN NS ns0.amsl.com. ietf.org. 86400 IN NS ns1.ams1.afilias-nst.info. ;; ADDITIONAL SECTION: ;; Query time: 56 msec ;; SERVER: 199.19.54.1 ;; WHEN: Tue Mar 24 00:48:19 2020 ;; MSG SIZE rcvd: 187
- 委任情報を得る
ietf.org. 86400 IN NS ns1.hkg1.afilias-nst.info.
ietf.org.のネームサーバーのうち1つはns1.hkg1.afilias-nst.info.
ns1.hkg1.afilias-nst.info.をルートに問い合わせ
drill -o rd @199.9.14.201 ns1.hkg1.afilias-nst.info. A
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 20003 ;; flags: qr ; QUERY: 1, ANSWER: 0, AUTHORITY: 6, ADDITIONAL: 12 ;; QUESTION SECTION: ;; ns1.hkg1.afilias-nst.info. IN A ;; ANSWER SECTION: ;; AUTHORITY SECTION: info. 172800 IN NS a2.info.afilias-nst.info. info. 172800 IN NS c0.info.afilias-nst.info. info. 172800 IN NS b0.info.afilias-nst.org. info. 172800 IN NS a0.info.afilias-nst.info. info. 172800 IN NS b2.info.afilias-nst.org. info. 172800 IN NS d0.info.afilias-nst.org. ;; ADDITIONAL SECTION: a0.info.afilias-nst.info. 172800 IN A 199.254.31.1 a2.info.afilias-nst.info. 172800 IN A 199.249.113.1 b0.info.afilias-nst.org. 172800 IN A 199.254.48.1 b2.info.afilias-nst.org. 172800 IN A 199.249.121.1 c0.info.afilias-nst.info. 172800 IN A 199.254.49.1 d0.info.afilias-nst.org. 172800 IN A 199.254.50.1 a0.info.afilias-nst.info. 172800 IN AAAA 2001:500:19::1 a2.info.afilias-nst.info. 172800 IN AAAA 2001:500:41::1 b0.info.afilias-nst.org. 172800 IN AAAA 2001:500:1a::1 b2.info.afilias-nst.org. 172800 IN AAAA 2001:500:49::1 c0.info.afilias-nst.info. 172800 IN AAAA 2001:500:1b::1 d0.info.afilias-nst.org. 172800 IN AAAA 2001:500:1c::1 ;; Query time: 124 msec ;; SERVER: 199.9.14.201 ;; WHEN: Tue Mar 24 00:52:46 2020 ;; MSG SIZE rcvd: 434
- 委任情報を得る
info. 172800 IN NS a2.info.afilias-nst.info. ... a2.info.afilias-nst.info. 172800 IN A 199.249.113.1
info.のネームサーバーのうち1つa2.info.afilias-nst.info.は199.249.113.1
ns1.hkg1.afilias-nst.info.をa2.info.afilias-nst.info.に問い合わせ
sh
drill -o rd @199.249.113.1 ns1.hkg1.afilias-nst.info. A
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 13591 ;; flags: qr ; QUERY: 1, ANSWER: 0, AUTHORITY: 4, ADDITIONAL: 8 ;; QUESTION SECTION: ;; ns1.hkg1.afilias-nst.info. IN A ;; ANSWER SECTION: ;; AUTHORITY SECTION: afilias-nst.info. 86400 IN NS a0.dig.afilias-nst.info. afilias-nst.info. 86400 IN NS b0.dig.afilias-nst.info. afilias-nst.info. 86400 IN NS c0.dig.afilias-nst.info. afilias-nst.info. 86400 IN NS d0.dig.afilias-nst.info. ;; ADDITIONAL SECTION: a0.dig.afilias-nst.info. 86400 IN A 65.22.6.1 b0.dig.afilias-nst.info. 86400 IN A 65.22.7.1 c0.dig.afilias-nst.info. 86400 IN A 65.22.8.1 d0.dig.afilias-nst.info. 86400 IN A 65.22.9.1 a0.dig.afilias-nst.info. 86400 IN AAAA 2a01:8840:6::1 b0.dig.afilias-nst.info. 86400 IN AAAA 2a01:8840:7::1 c0.dig.afilias-nst.info. 86400 IN AAAA 2a01:8840:8::1 d0.dig.afilias-nst.info. 86400 IN AAAA 2a01:8840:9::1 ;; Query time: 105 msec ;; SERVER: 199.249.113.1 ;; WHEN: Tue Mar 24 00:54:50 2020 ;; MSG SIZE rcvd: 291
- 委任情報を得る
afilias-nst.info. 86400 IN NS a0.dig.afilias-nst.info. ... a0.dig.afilias-nst.info. 86400 IN A 65.22.6.1
afilias-nst.info.のネームサーバーのうち1つa0.dig.afilias-nst.info.は65.22.6.1にある
ns1.hkg1.afilias-nst.info.をa0.dig.afilias-nst.info.に問い合わせ
drill -o rd @65.22.6.1 ns1.hkg1.afilias-nst.info. A
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 9654 ;; flags: qr aa ; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 8 ;; QUESTION SECTION: ;; ns1.hkg1.afilias-nst.info. IN A ;; ANSWER SECTION: ns1.hkg1.afilias-nst.info. 3600 IN A 65.22.6.1 ;; AUTHORITY SECTION: hkg1.afilias-nst.info. 3600 IN NS d0.dig.afilias-nst.info. hkg1.afilias-nst.info. 3600 IN NS c0.dig.afilias-nst.info. hkg1.afilias-nst.info. 3600 IN NS a0.dig.afilias-nst.info. hkg1.afilias-nst.info. 3600 IN NS b0.dig.afilias-nst.info. ;; ADDITIONAL SECTION: a0.dig.afilias-nst.info. 86400 IN A 65.22.6.1 b0.dig.afilias-nst.info. 86400 IN A 65.22.7.1 c0.dig.afilias-nst.info. 86400 IN A 65.22.8.1 d0.dig.afilias-nst.info. 86400 IN A 65.22.9.1 a0.dig.afilias-nst.info. 86400 IN AAAA 2a01:8840:6::1 b0.dig.afilias-nst.info. 86400 IN AAAA 2a01:8840:7::1 c0.dig.afilias-nst.info. 86400 IN AAAA 2a01:8840:8::1 d0.dig.afilias-nst.info. 86400 IN AAAA 2a01:8840:9::1 ;; Query time: 6 msec ;; SERVER: 65.22.6.1 ;; WHEN: Tue Mar 24 00:58:00 2020 ;; MSG SIZE rcvd: 307
- 権威のある情報を得た
ns1.hkg1.afilias-nst.info. 3600 IN A 65.22.6.1
- ようやく
www.ietf.orgの問い合わせを再開できる
www.ietf.org.をns1.hkg1.afilias-nst.info.に問い合わせ
drill -o rd @65.22.6.1 www.ietf.org AAAA
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 26334 ;; flags: qr aa ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; www.ietf.org. IN AAAA ;; ANSWER SECTION: www.ietf.org. 1800 IN CNAME www.ietf.org.cdn.cloudflare.net. ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; Query time: 6 msec ;; SERVER: 65.22.6.1 ;; WHEN: Tue Mar 24 01:00:49 2020 ;; MSG SIZE rcvd: 75
- 権威のある情報を得た
www.ietf.org. 1800 IN CNAME www.ietf.org.cdn.cloudflare.net.
- CloudFlareを利用しているらしい
- またルートから問い合わせる
www.ietf.org.cdn.cloudflare.net.をルートに問い合わせ
drill -o rd @199.9.14.201 www.ietf.org.cdn.cloudflare.net. AAAA
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 2999 ;; flags: qr ; QUERY: 1, ANSWER: 0, AUTHORITY: 13, ADDITIONAL: 14 ;; QUESTION SECTION: ;; www.ietf.org.cdn.cloudflare.net. IN AAAA ;; ANSWER SECTION: ;; AUTHORITY SECTION: net. 172800 IN NS j.gtld-servers.net. net. 172800 IN NS g.gtld-servers.net. net. 172800 IN NS d.gtld-servers.net. net. 172800 IN NS f.gtld-servers.net. net. 172800 IN NS k.gtld-servers.net. net. 172800 IN NS c.gtld-servers.net. net. 172800 IN NS m.gtld-servers.net. net. 172800 IN NS i.gtld-servers.net. net. 172800 IN NS h.gtld-servers.net. net. 172800 IN NS b.gtld-servers.net. net. 172800 IN NS e.gtld-servers.net. net. 172800 IN NS l.gtld-servers.net. net. 172800 IN NS a.gtld-servers.net. ;; ADDITIONAL SECTION: a.gtld-servers.net. 172800 IN A 192.5.6.30 b.gtld-servers.net. 172800 IN A 192.33.14.30 c.gtld-servers.net. 172800 IN A 192.26.92.30 d.gtld-servers.net. 172800 IN A 192.31.80.30 e.gtld-servers.net. 172800 IN A 192.12.94.30 f.gtld-servers.net. 172800 IN A 192.35.51.30 g.gtld-servers.net. 172800 IN A 192.42.93.30 h.gtld-servers.net. 172800 IN A 192.54.112.30 i.gtld-servers.net. 172800 IN A 192.43.172.30 j.gtld-servers.net. 172800 IN A 192.48.79.30 k.gtld-servers.net. 172800 IN A 192.52.178.30 l.gtld-servers.net. 172800 IN A 192.41.162.30 m.gtld-servers.net. 172800 IN A 192.55.83.30 a.gtld-servers.net. 172800 IN AAAA 2001:503:a83e::2:30 ;; Query time: 123 msec ;; SERVER: 199.9.14.201 ;; WHEN: Tue Mar 24 01:02:41 2020 ;; MSG SIZE rcvd: 506
- 委任情報を得た
net. 172800 IN NS d.gtld-servers.net. ... d.gtld-servers.net. 172800 IN A 192.31.80.30
net.のネームサーバーのうち1つd.gtld-servers.net.は192.31.80.30
www.ietf.org.cdn.cloudflare.net.をd.gtld-servers.net.に問い合わせ
drill -o rd @192.31.80.30 www.ietf.org.cdn.cloudflare.net. AAAA
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 2358 ;; flags: qr ; QUERY: 1, ANSWER: 0, AUTHORITY: 5, ADDITIONAL: 10 ;; QUESTION SECTION: ;; www.ietf.org.cdn.cloudflare.net. IN AAAA ;; ANSWER SECTION: ;; AUTHORITY SECTION: cloudflare.net. 172800 IN NS ns1.cloudflare.net. cloudflare.net. 172800 IN NS ns2.cloudflare.net. cloudflare.net. 172800 IN NS ns3.cloudflare.net. cloudflare.net. 172800 IN NS ns4.cloudflare.net. cloudflare.net. 172800 IN NS ns5.cloudflare.net. ;; ADDITIONAL SECTION: ns1.cloudflare.net. 172800 IN A 173.245.59.31 ns1.cloudflare.net. 172800 IN AAAA 2400:cb00:2049:1::adf5:3b1f ns2.cloudflare.net. 172800 IN A 198.41.222.131 ns2.cloudflare.net. 172800 IN AAAA 2400:cb00:2049:1::c629:de83 ns3.cloudflare.net. 172800 IN A 198.41.222.31 ns3.cloudflare.net. 172800 IN AAAA 2400:cb00:2049:1::c629:de1f ns4.cloudflare.net. 172800 IN A 198.41.223.131 ns4.cloudflare.net. 172800 IN AAAA 2400:cb00:2049:1::c629:df83 ns5.cloudflare.net. 172800 IN A 198.41.223.31 ns5.cloudflare.net. 172800 IN AAAA 2400:cb00:2049:1::c629:df1f ;; Query time: 161 msec ;; SERVER: 192.31.80.30 ;; WHEN: Tue Mar 24 01:03:57 2020 ;; MSG SIZE rcvd: 359
- 委任情報を得た
cloudflare.net. 172800 IN NS ns4.cloudflare.net. ... ns4.cloudflare.net. 172800 IN A 198.41.223.131
cloudflare.net.のネームサーバーのうち1つns4.cloudflare.net.は198.41.223.131
www.ietf.org.cdn.cloudflare.net.をns4.cloudflare.net.に問い合わせる
drill -o rd @198.41.223.131 www.ietf.org.cdn.cloudflare.net. AAAA
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 43268 ;; flags: qr aa ; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; www.ietf.org.cdn.cloudflare.net. IN AAAA ;; ANSWER SECTION: www.ietf.org.cdn.cloudflare.net. 300 IN AAAA 2606:4700:10::6814:155 www.ietf.org.cdn.cloudflare.net. 300 IN AAAA 2606:4700:10::6814:55 ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; Query time: 7 msec ;; SERVER: 198.41.223.131 ;; WHEN: Tue Mar 24 01:05:45 2020 ;; MSG SIZE rcvd: 105
- 権威のある応答を得た
www.ietf.org.cdn.cloudflare.net. 300 IN AAAA 2606:4700:10::6814:155 www.ietf.org.cdn.cloudflare.net. 300 IN AAAA 2606:4700:10::6814:55
www.ietf.org.の正規名www.ietf.org.cdn.cloudflare.net.のIPv6アドレスは次の2つである:- 2606:4700:10::6814:155
- 2606:4700:10::6814:55
