Skip to content

Instantly share code, notes, and snippets.

@edmonds
Created October 29, 2019 00:44
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
Star You must be signed in to star a gist
Save edmonds/3c64c1fefe22c13ef8971c647f2de134 to your computer and use it in GitHub Desktop.
edmonds@li:~$ kdig @dot.xfinity.com www.ietf.org +tls +dnssec -4 -E /tmp/dnstap.out.4 1>/dev/null
edmonds@li:~$ kdig @dot.xfinity.com www.ietf.org +tls +dnssec -6 -E /tmp/dnstap.out.6 1>/dev/null
edmonds@li:~$ dnstap-ldns -y -r /tmp/dnstap.out.4
type: MESSAGE
version: "kdig 2.7.6"
message:
type: TOOL_QUERY
query_time: !!timestamp 2019-10-29 00:43:32.083542
socket_family: INET
socket_protocol: TCP
query_address: 45.33.102.105
response_address: 162.150.13.53
query_port: 42952
response_port: 853
query_message: |
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 23874
;; flags: rd ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;www.ietf.org. IN A
;; ANSWER SECTION:
;; AUTHORITY SECTION:
;; ADDITIONAL SECTION:
;; EDNS: version 0; flags: do ; udp: 4096
;; Data: \# 87 000c00530000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
---
type: MESSAGE
version: "kdig 2.7.6"
message:
type: TOOL_RESPONSE
response_time: !!timestamp 2019-10-29 00:43:32.274716
socket_family: INET
socket_protocol: TCP
query_address: 45.33.102.105
response_address: 162.150.13.53
query_port: 42952
response_port: 853
response_message: |
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 23874
;; flags: qr rd ra ; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;www.ietf.org. IN A
;; ANSWER SECTION:
www.ietf.org. 235 IN CNAME www.ietf.org.cdn.cloudflare.net.
www.ietf.org.cdn.cloudflare.net. 235 IN A 104.20.0.85
www.ietf.org.cdn.cloudflare.net. 235 IN A 104.20.1.85
;; AUTHORITY SECTION:
;; ADDITIONAL SECTION:
;; EDNS: version 0; flags: do ; udp: 512
---
edmonds@li:~$ dnstap-ldns -y -r /tmp/dnstap.out.6
type: MESSAGE
version: "kdig 2.7.6"
message:
type: TOOL_QUERY
query_time: !!timestamp 2019-10-29 00:43:37.106118
socket_family: INET6
socket_protocol: TCP
query_address: 2600:3c02::f03c:91ff:fe9b:2b34
response_address: 2001:558:fe21:6b:96:113:151:145
query_port: 41006
response_port: 853
query_message: |
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 24106
;; flags: rd ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;www.ietf.org. IN A
;; ANSWER SECTION:
;; AUTHORITY SECTION:
;; ADDITIONAL SECTION:
;; EDNS: version 0; flags: do ; udp: 4096
;; Data: \# 87 000c00530000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
---
type: MESSAGE
version: "kdig 2.7.6"
message:
type: TOOL_RESPONSE
response_time: !!timestamp 2019-10-29 00:43:37.138400
socket_family: INET6
socket_protocol: TCP
query_address: 2600:3c02::f03c:91ff:fe9b:2b34
response_address: 2001:558:fe21:6b:96:113:151:145
query_port: 41006
response_port: 853
response_message: |
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 24106
;; flags: qr rd ra ad ; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;www.ietf.org. IN A
;; ANSWER SECTION:
www.ietf.org. 209 IN CNAME www.ietf.org.cdn.cloudflare.net.
www.ietf.org. 209 IN RRSIG CNAME 5 3 300 20201017214310 20191018204452 40452 ietf.org. NNOO4nXgYuDWQrhdBrjyMIi6sYoBSwWCfciWMobJppMFtMkHD8Yf4fXXMShGt36a3zzzh6Ifp4IdjukyQVtUgQt03mWJZXH3UTihtRgkn/QQLKJ+Y3oS6ehxqLjcQxYX3NhYCHe79TM1R6qUFmOf35mgyYlWlKpnWlJ6xmHjfglDzdNgBDitOWZiQdxvIO7TAIjuqk9J1bdgVYAnGaOLnfJZsyzCy+40HcyTMgXZisZYkrPbE7WhhiTs7E/2Gn2lVQ1Kc9gwGNxvl2r0q06NG+UEuJkr/raohBL8z93PNzZjEwdGD8MMh2SeGhoozm1JZGd35gDZYwp5gJyTVxxbjg==
www.ietf.org.cdn.cloudflare.net. 227 IN A 104.20.1.85
www.ietf.org.cdn.cloudflare.net. 227 IN A 104.20.0.85
www.ietf.org.cdn.cloudflare.net. 227 IN RRSIG A 13 6 300 20191030014224 20191027234224 34505 cloudflare.net. 7fYSOUhYzmbs0XP+htTjUjmdNBbgFiVAwuIjTkG9KjVRwmQQuwtAgO/3oXaSG8z2LA9yw4GfhcDgSouhfmxmug==
;; AUTHORITY SECTION:
;; ADDITIONAL SECTION:
;; EDNS: version 0; flags: do ; udp: 512
---
@kontrolldkaos
Copy link

➞ kdig --version
kdig (Knot DNS), version 2.8.4

~
➞ kdig -4 @dot.xfinity.com ietf.org +tls +dns
;; TLS session (TLS1.3)-(ECDHE-SECP256R1)-(RSA-PSS-RSAE-SHA256)-(AES-256-GCM)
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 38408
;; Flags: qr rd ra ad; QUERY: 1; ANSWER: 2; AUTHORITY: 0; ADDITIONAL: 1

;; EDNS PSEUDOSECTION:
;; Version: 0; flags: do; UDP size: 512 B; ext-rcode: NOERROR

;; QUESTION SECTION:
;; ietf.org. IN A

;; ANSWER SECTION:
ietf.org. 300 IN A 4.31.198.44
ietf.org. 300 IN RRSIG A 5 2 300 20201017214431 20191018204452 40452 ietf.org. AnhSsEWnmM/ghcLsntgAjc5DxDxDx92tAGhJZ9AqQxA2Nc+gHWg7B7vTM4FaRXF8WKILCDrN4KYQAHKKBO/ddfzoXMHSjFyb0ZWl2zni0VXhOa9slLIpIXtj76JWQJigqrIXu2mqCVfa0zBvs3kIoO6vQf19bnC7jO66FlJhvj9nSzrNd0OMOUlJmKmLynYW988MkiqtG1bSO9SayRqO9I89dfAGa5kcTsceukp1fw2axWSZIhjdg/Yzn7Zau5ylV78n+dQM7V7vH76FwBdp342AZdStK2fUraFw3rJjm7NIJqyg4FWd9R5E5n53ExD+AwU1Ww+vKVUZfO+s+u/56w==

;; Received 349 B
;; Time 2019-10-28 20:50:52 EDT
;; From 162.150.13.53@853(TCP) in 205.2 ms

~

~

~
➞ kdig -6 @dot.xfinity.com ietf.org +tls +dns
;; TLS session (TLS1.2)-(ECDHE-SECP256R1)-(RSA-SHA256)-(AES-256-GCM)
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 38249
;; Flags: qr rd ra ad; QUERY: 1; ANSWER: 2; AUTHORITY: 0; ADDITIONAL: 1

;; EDNS PSEUDOSECTION:
;; Version: 0; flags: do; UDP size: 512 B; ext-rcode: NOERROR

;; QUESTION SECTION:
;; ietf.org. IN A

;; ANSWER SECTION:
ietf.org. 300 IN A 4.31.198.44
ietf.org. 300 IN RRSIG A 5 2 300 20201017214431 20191018204452 40452 ietf.org. AnhSsEWnmM/ghcLsntgAjc5DxDxDx92tAGhJZ9AqQxA2Nc+gHWg7B7vTM4FaRXF8WKILCDrN4KYQAHKKBO/ddfzoXMHSjFyb0ZWl2zni0VXhOa9slLIpIXtj76JWQJigqrIXu2mqCVfa0zBvs3kIoO6vQf19bnC7jO66FlJhvj9nSzrNd0OMOUlJmKmLynYW988MkiqtG1bSO9SayRqO9I89dfAGa5kcTsceukp1fw2axWSZIhjdg/Yzn7Zau5ylV78n+dQM7V7vH76FwBdp342AZdStK2fUraFw3rJjm7NIJqyg4FWd9R5E5n53ExD+AwU1Ww+vKVUZfO+s+u/56w==

;; Received 349 B
;; Time 2019-10-28 20:51:00 EDT
;; From 2001:558:fe21:6b:96:113:151:145@853(TCP) in 78.6 ms

@edmonds
Copy link
Author

edmonds commented Oct 29, 2019

edmonds@li:~$ kdig --version
kdig (Knot DNS), version 2.9.0

edmonds@li:~$ kdig -4 @dot.xfinity.com ietf.org +tls +dns
;; TLS session (TLS1.3)-(ECDHE-SECP256R1)-(RSA-PSS-RSAE-SHA256)-(AES-256-GCM)
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 4419
;; Flags: qr rd ra; QUERY: 1; ANSWER: 1; AUTHORITY: 0; ADDITIONAL: 1

;; EDNS PSEUDOSECTION:
;; Version: 0; flags: do; UDP size: 512 B; ext-rcode: NOERROR

;; QUESTION SECTION:
;; ietf.org.           		IN	A

;; ANSWER SECTION:
ietf.org.           	255	IN	A	4.31.198.44

;; Received 53 B
;; Time 2019-10-28 20:56:22 EDT
;; From 162.150.13.53@853(TCP) in 188.4 ms

edmonds@li:~$ kdig -6 @dot.xfinity.com ietf.org +tls +dns
;; TLS session (TLS1.2)-(ECDHE-SECP256R1)-(RSA-SHA256)-(AES-256-GCM)
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 42800
;; Flags: qr rd ra ad; QUERY: 1; ANSWER: 2; AUTHORITY: 0; ADDITIONAL: 1

;; EDNS PSEUDOSECTION:
;; Version: 0; flags: do; UDP size: 512 B; ext-rcode: NOERROR

;; QUESTION SECTION:
;; ietf.org.           		IN	A

;; ANSWER SECTION:
ietf.org.           	300	IN	A	4.31.198.44
ietf.org.           	300	IN	RRSIG	A 5 2 300 20201017214431 20191018204452 40452 ietf.org. AnhSsEWnmM/ghcLsntgAjc5DxDxDx92tAGhJZ9AqQxA2Nc+gHWg7B7vTM4FaRXF8WKILCDrN4KYQAHKKBO/ddfzoXMHSjFyb0ZWl2zni0VXhOa9slLIpIXtj76JWQJigqrIXu2mqCVfa0zBvs3kIoO6vQf19bnC7jO66FlJhvj9nSzrNd0OMOUlJmKmLynYW988MkiqtG1bSO9SayRqO9I89dfAGa5kcTsceukp1fw2axWSZIhjdg/Yzn7Zau5ylV78n+dQM7V7vH76FwBdp342AZdStK2fUraFw3rJjm7NIJqyg4FWd9R5E5n53ExD+AwU1Ww+vKVUZfO+s+u/56w==

;; Received 349 B
;; Time 2019-10-28 20:56:30 EDT
;; From 2001:558:fe21:6b:96:113:151:145@853(TCP) in 54.2 ms
edmonds@li:~$ 

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment