西瓜注:我没看太懂,好像是在解析域名是的过程,等回头我好好研究DNS后再说吧。
From:云舒
以前对DNS的解析过程还有些误解,最近做事情的时候仔细搞了一搞。简单的说,监控全局DNS劫持,还是直接监控根域服务器和授权域服务器能够最快 得到结果。
dig baidu.com +trace
; <<>> DiG 9.5.1-P2.1 <<>> baidu.com +trace
;; global options: printcmd
. 349711 IN NS G.ROOT-SERVERS.NET.
. 349711 IN NS H.ROOT-SERVERS.NET.
. 349711 IN NS I.ROOT-SERVERS.NET.
. 349711 IN NS J.ROOT-SERVERS.NET.
. 349711 IN NS K.ROOT-SERVERS.NET.
. 349711 IN NS L.ROOT-SERVERS.NET.
. 349711 IN NS M.ROOT-SERVERS.NET.
. 349711 IN NS A.ROOT-SERVERS.NET.
. 349711 IN NS B.ROOT-SERVERS.NET.
. 349711 IN NS C.ROOT-SERVERS.NET.
. 349711 IN NS D.ROOT-SERVERS.NET.
. 349711 IN NS E.ROOT-SERVERS.NET.
. 349711 IN NS F.ROOT-SERVERS.NET.
;; Received 436 bytes from 208.87.241.170#53(208.87.241.170) in 0 ms
com. 172800 IN NS D.GTLD-SERVERS.NET.
com. 172800 IN NS H.GTLD-SERVERS.NET.
com. 172800 IN NS L.GTLD-SERVERS.NET.
com. 172800 IN NS C.GTLD-SERVERS.NET.
com. 172800 IN NS G.GTLD-SERVERS.NET.
com. 172800 IN NS J.GTLD-SERVERS.NET.
com. 172800 IN NS B.GTLD-SERVERS.NET.
com. 172800 IN NS E.GTLD-SERVERS.NET.
com. 172800 IN NS F.GTLD-SERVERS.NET.
com. 172800 IN NS K.GTLD-SERVERS.NET.
com. 172800 IN NS A.GTLD-SERVERS.NET.
com. 172800 IN NS I.GTLD-SERVERS.NET.
com. 172800 IN NS M.GTLD-SERVERS.NET.
;; Received 499 bytes from 192.58.128.30#53(J.ROOT-SERVERS.NET) in 153 ms
baidu.com. 172800 IN NS dns.baidu.com.
baidu.com. 172800 IN NS ns2.baidu.com.
baidu.com. 172800 IN NS ns3.baidu.com.
baidu.com. 172800 IN NS ns4.baidu.com.
;; Received 163 bytes from 192.43.172.30#53(I.GTLD-SERVERS.NET) in 166 ms
baidu.com. 600 IN A 220.181.6.81
baidu.com. 600 IN A 220.181.6.184
baidu.com. 600 IN A 61.135.163.94
baidu.com. 86411 IN NS ns2.baidu.com.
baidu.com. 86411 IN NS ns3.baidu.com.
baidu.com. 86411 IN NS ns4.baidu.com.
baidu.com. 86411 IN NS dns.baidu.com.
;; Received 211 bytes from 61.135.165.235#53(ns2.baidu.com) in 251 ms
本文还暂无回复