看到新的 DNS Resolver 服務,也拿到了還不錯的 IP address,9.9.9.9:「New “Quad9” DNS service blocks malicious domains for everyone」,服務網站是「Quad 9 | Internet Security and Privacy in a Few Easy Steps」,主打宣稱過濾已知的危險站台...
由政府單位、IBM 以及 Packet Clearing House 成立的:
The Global Cyber Alliance (GCA)—an organization founded by law enforcement and research organizations to help reduce cyber-crime—has partnered with IBM and Packet Clearing House to launch a free public Domain Name Service system.
也就是說,後面三家都不是專門做網路服務的廠商... 於是就會發現連 Client Subnet in DNS Queries (RFC 7871) 都沒提供,於是查出來的地區都不對,這對使用 DNS resolver 位置分配 CDN 節點的服務很傷啊... (或是其他類似服務)
這是 Google 的 Public DNS (8.8.8.8) 查出來的:
;; ANSWER SECTION: i.kfs.io. 576 IN CNAME kwc.kkcube.com.country.mp.kkcube.com. kwc.kkcube.com.country.mp.kkcube.com. 21599 IN CNAME TW.kwc.kkcube.com. TW.kwc.kkcube.com. 188 IN CNAME i.kfs.io.cdn.cloudflare.net. i.kfs.io.cdn.cloudflare.net. 299 IN A 104.16.244.238 i.kfs.io.cdn.cloudflare.net. 299 IN A 104.16.245.238 ;; Query time: 28 msec ;; SERVER: 8.8.8.8#53(8.8.8.8) ;; WHEN: Sat Nov 18 05:30:23 CST 2017 ;; MSG SIZE rcvd: 181
這是 Quad9 (9.9.9.9) 查出來的:
;; ANSWER SECTION: i.kfs.io. 1800 IN CNAME kwc.kkcube.com.country.mp.kkcube.com. kwc.kkcube.com.country.mp.kkcube.com. 42702 IN CNAME US.kwc.kkcube.com. US.kwc.kkcube.com. 300 IN CNAME i.kfs.io.cdn.cloudflare.net. i.kfs.io.cdn.cloudflare.net. 300 IN A 104.16.245.238 i.kfs.io.cdn.cloudflare.net. 300 IN A 104.16.244.238 ;; Query time: 294 msec ;; SERVER: 9.9.9.9#53(9.9.9.9) ;; WHEN: Sat Nov 18 05:30:27 CST 2017 ;; MSG SIZE rcvd: 181
再來一點是,在科技領域相信政府單位通常都是一件錯誤的事情,我 pass... XD
