[86075] in North American Network Operators' Group
RE: IANA Blackhole Servers Ill?
daemon@ATHENA.MIT.EDU (John van Oppen)
Fri Oct 21 17:29:27 2005
Date: Fri, 21 Oct 2005 14:29:00 -0700
From: "John van Oppen" <john@vanoppen.com>
To: <peter@peter-dambier.de>, <crist.clark@globalstar.com>
Cc: "nanog" <nanog@merit.edu>
Errors-To: owner-nanog@merit.edu
It is probably important to know that those servers are anycasted via =
the AS112 project (www.as112.net). Perhaps the AS112 operator you are =
seeing is having issues. You could try to identify which one and let =
them know.
Thanks,
John :)
-----Urspr=FCngliche Nachricht-----
Von: Peter Dambier [mailto:peter@peter-dambier.de]=20
Gesendet: Friday, October 21, 2005 2:20 PM
An: crist.clark@globalstar.com
Cc: nanog
Betreff: Re: IANA Blackhole Servers Ill?
To me they do answer:
; <<>> DiG 9.1.3 <<>> -t any 10.in-addr.arpa. @blackhole-1.iana.org.
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20469
;; flags: qr aa rd; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;10.in-addr.arpa. IN ANY
;; ANSWER SECTION:
10.in-addr.arpa. 604800 IN SOA prisoner.iana.org. =
hostmaster.root-servers.org.\
2002040800 1800 900 =
604800 604800
10.in-addr.arpa. 604800 IN NS blackhole-1.iana.org.
10.in-addr.arpa. 604800 IN NS blackhole-2.iana.org.
;; Query time: 113 msec
;; SERVER: 192.175.48.6#53(blackhole-1.iana.org.)
;; WHEN: Fri Oct 21 23:15:39 2005
;; MSG SIZE rcvd: 162
; <<>> DiG 9.1.3 <<>> -t any 10.in-addr.arpa. @blackhole-2.iana.org.
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 43116
;; flags: qr aa rd; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;10.in-addr.arpa. IN ANY
;; ANSWER SECTION:
10.in-addr.arpa. 604800 IN SOA prisoner.iana.org. =
hostmaster.root-servers.org.\
2002040800 1800 900 =
604800 604800
10.in-addr.arpa. 604800 IN NS blackhole-1.iana.org.
10.in-addr.arpa. 604800 IN NS blackhole-2.iana.org.
;; Query time: 112 msec
;; SERVER: 192.175.48.42#53(blackhole-2.iana.org.)
;; WHEN: Fri Oct 21 23:15:49 2005
;; MSG SIZE rcvd: 162
Regards,
Peter and Karin Dambier
Crist Clark wrote:
>=20
> We got some very weird compaints about applications "hanging." Tracked
> it down to reverse lookups timing out. Reverse lookups to RFC1918 =
space.
> Looks like the IANA blackhole servers for RFC1918 are not well?
>=20
> 1 0.00000 207.88.152.10 -> 192.175.48.6 DNS C=20
> 52.143.18.172.in-addr.arpa. Internet PTR ?
> 2 0.01375 192.175.48.6 -> 207.88.152.10 ICMP Destination =
unreachable=20
> (UDP port 53 unreachable)
> 3 0.68455 207.88.152.10 -> 192.175.48.6 DNS C=20
> 111.143.18.172.in-addr.arpa. Internet PTR ?
> 4 0.00529 192.175.48.6 -> 207.88.152.10 ICMP Destination =
unreachable=20
> (UDP port 53 unreachable)
> 5 3.00417 207.88.152.10 -> 192.175.48.42 DNS C=20
> 111.143.18.172.in-addr.arpa. Internet PTR ?
> 6 0.00548 192.175.48.42 -> 207.88.152.10 ICMP Destination=20
> unreachable (UDP port 53 unreachable)
> 7 0.68462 207.88.152.10 -> 192.175.48.42 DNS C=20
> 69.160.18.172.in-addr.arpa. Internet PTR ?
> 8 0.00623 192.175.48.42 -> 207.88.152.10 ICMP Destination=20
> unreachable (UDP port 53 unreachable)
> 9 0.60348 207.88.152.10 -> 192.175.48.6 DNS C=20
> 52.143.18.172.in-addr.arpa. Internet PTR ?
> 10 0.00523 192.175.48.6 -> 207.88.152.10 ICMP Destination =
unreachable=20
> (UDP port 53 unreachable)
>=20
> Looks like the hosts are up but not listening on 53/udp? Anyone else
> seeing this? Heard about it?
>=20
> (Of course, the fix is to claim authority for the RFC1918 space you =
are
> using in your own DNS servers.)
--=20
Peter and Karin Dambier
Public-Root
Graeffstrasse 14
D-64646 Heppenheim
+49-6252-671788 (Telekom)
+49-179-108-3978 (O2 Genion)
+49-6252-750308 (VoIP: sipgate.de)
mail: peter@peter-dambier.de
mail: peter@echnaton.serveftp.com
http://iason.site.voila.fr
http://www.kokoom.com/iason
