[Pdns-users] How to avoid to be redirected to ad by my ISP if NXDOMAIN?
Gerhard Gaußling
ggrubbish at web.de
Thu Nov 12 23:36:43 UTC 2009
Am Donnerstag, 12. November 2009 schrieben Sie:
> On Thu, Nov 12, 2009 at 09:14:28PM +0100, Gerhard Gaußling wrote:
> > ~$ dig gogle.gom
>
> This is very strange. Are you 100% sure the question is being
> processed by your local PowerDNS Recursor?
>
> Most NXDOMAIN redirection setups do not actively intercept non-RD DNS
> packets.
>
> Can you show the output of your Recursor running in '--trace' mode
> when answering a question for 'gogle.gom'?
I think you're right, but what processes the question then? When I stop
the recursor I get the same output.
But I don't understand how to trace the output. I get no messages and no
logfiles:
Nov 12 23:59:50 Calling daemonize, going to background
gerhard at ubuntu:~$
gerhard at ubuntu:~$ ps axu|grep recu
root 20642 0.0 0.0 12704 1416 ? Ss Nov12 0:00
pdns_recursor --local-address=172.16.240.1 --allow-from=172.16.240.1/8 --daemon --trace
Now sometimes I don't get those responses:
~$ dig ggfj.gm @localhost
; <<>> DiG 9.4.2-P2 <<>> ggfj.gm @localhost
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34719
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;ggfj.gm. IN A
;; AUTHORITY SECTION:
gm. 3600 IN SOA ns1.nic.gm.
admin.nic.gm. 2009111310 21600 900 604800
7200
;; Query time: 80 msec
;; SERVER: 172.16.240.1#53(172.16.240.1)
;; WHEN: Fri Nov 13 00:06:40 2009
;; MSG SIZE rcvd: 75
gerhard at ubuntu:~$ lynx --dump ggfjjk.gom
FRAME:
[1]http://navigationshilfe.t-online.de/dnserror?url=http://www.ggfjjk.g
om.com/
The same with the router:
~$ dig ggfjjk.gom @fritz.box
; <<>> DiG 9.4.2-P2 <<>> ggfjjk.gom @fritz.box
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63178
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;ggfjjk.gom. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA A.ROOT-SERVERS.NET.
NSTLD.VERISIGN-GRS.COM. 2009111201
1800 900 604800 86400
;; Query time: 55 msec
;; SERVER: 172.16.240.3#53(172.16.240.3)
;; WHEN: Fri Nov 13 00:05:52 2009
;; MSG SIZE rcvd: 103
But when I surf there is the redirection:
gerhard at ubuntu:~$ lynx --dump ggfjjk.gom
FRAME:
[1]http://navigationshilfe.t-online.de/dnserror?url=http://www.ggfjjk.g
om.com/
~$ ps axu |egrep '(recursor|dns)'
root 1447 0.0 0.0 35876 1332 ? Ssl Nov12
0:00 /usr/sbin/pdns_server --daemon --guardian=yes
pdns 1449 0.0 0.1 135712 4488 ? Sl Nov12
0:01 /usr/sbin/pdns_server-instance --daemon --guardian=yes
root 20642 0.0 0.0 12704 1416 ? Ss Nov12 0:00
pdns_recursor --local-address=172.16.240.1 --allow-from=172.16.240.1/8 --daemon --trace
gerhard 28342 0.0 0.0 6208 940 pts/1 R+ 00:12 0:00 egrep
(recursor|dns)
But this address gets a NOERROR response:
~$ dig gogle.gom @localhost
; <<>> DiG 9.4.2-P2 <<>> gogle.gom @localhost
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6266
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;gogle.gom. IN A
;; ANSWER SECTION:
gogle.gom. 0 IN A 80.156.86.78
gogle.gom. 0 IN A 62.157.140.133
;; Query time: 54 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Fri Nov 13 00:12:55 2009
;; MSG SIZE rcvd: 59
why?
How to use the --trace option?
Ok, I found it: /var/log/daemon.log, but it seems that there are no
questions or responses to pdns_recursor. I think I messed up the setup.
But what dns answers to the questions?
More information about the Pdns-users
mailing list