Skip to content

Instantly share code, notes, and snippets.

@marcinantkiewicz

marcinantkiewicz/dig-edns.md

Forked from fartbagxp/dig-edns.md
Created April 23, 2024 15:22
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save marcinantkiewicz/5b3df43d1bc79f918c7182a4adc54748 to your computer and use it in GitHub Desktop.
Save marcinantkiewicz/5b3df43d1bc79f918c7182a4adc54748 to your computer and use it in GitHub Desktop.
Download ZIP
Testing eDNS with dig
Raw
dig-edns.md

Articles about eDNS

NolaCon 2017 GBC04 EDNS Client Subnet ECS DNS CDN Magic or Secur Jim Nitterauer

archive.is not resolving under 1.1.1.1 Cloudflare DNS resolver

Commands to try

Resolving Google using two different IP address will provide two different results.

  • dig +short @8.8.8.8 google.com +subnet=120.5.5.6

  • dig +short @8.8.8.8 google.com +subnet=121.5.5.5

Use the following to see what subnet eDNS is passing as a result (generally a /24)

  • dig +nocmd @dns.google. -t txt o-o.myaddr.l.google.com +nocomments +noall +answer +stats

  • dig +nocmd @resolver1.opendns.com -t txt o-o.myaddr.l.google.com +nocomments +noall +answer +stats

  • dig +nocmd @one.one.one.one -t txt o-o.myaddr.l.google.com +nocomments +noall +answer +stats

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment