Generated: 2019-09-16T00:00:03Z -- 2019-09-16T00:03:01Z
The following report was generated automatically.
Packet loss and network issues may have introduced false positives.
Please verify the results before taking action.
You can report issues with this report to: marka@isc.org
Most recursive resolvers now support EDNS. Lack of EDNS support in authoritative servers results in additional queries being made as the recursive servers need to retry with plain DNS and results in slower DNS resolution.
Not answering EDNS queries is particularly bad as that is indistingishable from packet loss.
Incorrect EDNS behaviour when presented with unknown EDNS versions and EDNS options can result in DNS resolution failures and/or DNSSEC validation failures.
Failure to run fully EDNS compliant nameservers will make it hard to deploy developments like DNS COOKIES which provides mitigation against DNS amplification attacks, off path spoofing resistance, RRL advoidance and excessive resource usage.
ok - test passed.
badvers - BADVERS returned.
badversion - expected EDNS version not found.
echoed - EDNS option echoed back.
formerr - FORMERR returned.
mbz - EDNS flags echoed back.
nodo - EDNS DO flag not echoed.
noopt - OPT record not found when expected.
nosoa - SOA not found when expected.
notimp - NOTIMP returned.
refused - REFUSED returned.
servfail - SERVFAIL returned.
soa - SOA found when not expected.
status - expected status code not found.
toobig - UDP response bigger that advertised buffer size.
version - expected EDNS version not found.
reset - TCP connection reset.
timeout - lookup timed out.
Of servers that responded at all:
1673 of 1680 (99.58%) responded to a EDNS version 0 query
1673 of 1680 (99.58%) responded to a EDNS unknown option
1662 of 1680 (98.93%) responded to a EDNS unknown flags
1657 of 1680 (98.63%) responded to a EDNS version 1 query
1657 of 1680 (98.63%) responded to a EDNS unknown version and option
1667 of 1680 (99.23%) of nameservers support EDNS
1575 of 1667 (94.48%) EDNS capable servers are all ok
1627 of 1667 (97.60%) EDNS capable servers support unknown EDNS versions
1628 of 1667 (97.66%) EDNS capable servers support unknown EDNS options
1651 of 1667 (99.04%) EDNS capable servers support unknown EDNS flags
1585 of 1667 (95.08%) EDNS capable servers support unknown EDNS version and options
1665 of 1667 (99.88%) EDNS capable servers support DO=1
558 of 1667 (33.47%) EDNS capable servers return a NSID option
430 of 1667 (25.79%) EDNS capable servers return a EXPIRE option
768 of 1667 (46.07%) EDNS capable servers return a SUBNET option
210 of 1667 (12.60%) EDNS capable servers return a Server EDNS COOKIE option
fdicoig.gov. 104.122.95.88: no address records found (NXDOMAIN)
fdicoig.gov. 72.247.124.98: no address records found (NXDOMAIN)
fdicoig.gov. 60.254.128.45: no address records found (NXDOMAIN)
fdicoig.gov. 193.108.152.143: no address records found (NXDOMAIN)
fdicoig.gov. 23.73.134.237: no address records found (NXDOMAIN)
fdicoig.gov. 104.107.116.17: no address records found (NXDOMAIN)
fdicoig.gov. 23.73.133.237: no address records found (NXDOMAIN)
fdicoig.gov. 72.246.0.10: no address records found (NXDOMAIN)
fdicoig.gov. 23.73.133.141: no address records found (NXDOMAIN)
fdicoig.gov. 23.14.128.185: no address records found (NXDOMAIN)
fdicoig.gov. 23.207.197.166: no address records found (NXDOMAIN)
fdicoig.gov. 23.205.121.134: no address records found (NXDOMAIN)
fdicoig.gov. 72.246.192.168: no address records found (NXDOMAIN)
fdicoig.gov. 23.73.134.141: no address records found (NXDOMAIN)
fdicoig.gov. 2.18.25.37: no address records found (NXDOMAIN)
fdicoig.gov. 193.108.155.34: no address records found (NXDOMAIN)
flhealth.gov. doh-wpns002.doh.ad.state.fl.us: no address records found (NXDOMAIN)
privacyshield.gov. a4-54.akam.net: no address records found (NXDOMAIN)
(dig +noedns +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record
mauicounty.gov. @166.122.9.116 (dns2.hawaii.edu.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
mauicounty.gov. @2607:f278:2:d::9:116 (dns2.hawaii.edu.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
mauicounty.gov. @128.171.213.116 (dns1.hawaii.edu.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
mauicounty.gov. @2607:f278:0:24::213:116 (dns1.hawaii.edu.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
mauicounty.gov. @130.253.102.7 (dns4.hawaii.edu.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
mauicounty.gov. @2001:468:508:2::7 (dns4.hawaii.edu.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
mountainview.gov. @66.28.0.45 (res1.dns.cogentco.com.): dns=nosoa,noaa edns=nosoa,noaa edns1=ok edns@512=noaa ednsopt=nosoa,noaa edns1opt=ok do=nosoa,noaa ednsflags=nosoa,noaa optlist=nosoa,noaa,cookie,subnet signed=nosoa,noaa ednstcp=noaa
mountainview.gov. @66.28.0.61 (res2.dns.cogentco.com.): dns=nosoa,noaa edns=nosoa,noaa edns1=ok edns@512=noaa ednsopt=nosoa,noaa edns1opt=ok do=nosoa,noaa ednsflags=nosoa,noaa optlist=nosoa,noaa,cookie,subnet signed=nosoa,noaa ednstcp=noaa
mt.gov. @161.7.38.11 (mtdnssec.mt.gov.): dns=noaa,rd edns=noaa,rd edns1=ok edns@512=noaa ednsopt=noaa,rd edns1opt=ok do=ok ednsflags=noaa optlist=noaa signed=ok ednstcp=ok
mt.gov. @161.7.129.10 (mtdnstri.mt.gov.): dns=noaa,rd edns=noaa,rd edns1=ok edns@512=noaa ednsopt=noaa,rd edns1opt=ok do=ok ednsflags=noaa optlist=noaa signed=ok ednstcp=ok
mt.gov. @161.7.38.10 (mtdnspri.mt.gov.): dns=noaa,rd edns=noaa,rd edns1=ok edns@512=noaa ednsopt=noaa,rd edns1opt=ok do=ok ednsflags=noaa optlist=noaa signed=ok ednstcp=ok
ntsb.gov. @198.6.1.181 (auth60.ns.uu.net.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail,nsid signed=servfail ednstcp=servfail
ntsb.gov. @198.6.1.82 (auth02.ns.uu.net.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail,nsid,cookie,subnet signed=servfail ednstcp=servfail
boston.gov. @140.241.251.142 (ns1.cityofboston.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
cityofboston.gov. @140.241.251.142 (ns1.cityofboston.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
fdic.gov. @167.176.16.77 (ns02.fdic.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
fdicoig.gov. @167.176.16.77 (ns02.fdic.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ferc.gov. @204.87.17.241 (ns3.glb.ferc.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ferc.gov. @216.230.6.242 (ns2.glb.ferc.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
lasvegasnevada.gov. @192.112.64.27 (dns3.lasvegasnevada.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
louisvilleky.gov. @68.216.91.4 (ns4.louisvilleky.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
louisvilleky.gov. @68.216.91.3 (ns3.louisvilleky.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
louisvilleky.gov. @172.31.0.100 (member1.louisvilleky.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
louisvilleky.gov. @68.216.91.3 (member1.louisvilleky.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
louisvilleky.gov. @68.216.91.4 (member2.louisvilleky.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
louisvilleky.gov. @172.31.0.201 (gridmaster.louisvilleky.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ntsb.gov. @199.173.155.5 (ns2.ntsb.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
usaid.gov. @12.14.13.231 (ns05.usaid.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
acl.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
acl.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
acl.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
acl.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ahrq.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ahrq.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ahrq.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ahrq.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
apprenticeship.gov. @2607:f250:d008:2022:65:106:133:211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
apprenticeship.gov. @2607:f250:d024:3001:152:180:20:20 (stlns08.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
apprenticeship.gov. @2607:f250:d008:2022:65:106:133:212 (ns2.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
benefits.gov. @2607:f250:d008:2022:65:106:133:211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
benefits.gov. @2607:f250:d008:2022:65:106:133:212 (ns2.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
benefits.gov. @2607:f250:d024:3001:152:180:20:20 (stlns08.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
childwelfare.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
childwelfare.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
childwelfare.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
childwelfare.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
daviscountyutah.gov. @2002:a8b4:c812::a8b4:c812 (dc-dns.co.davis.ut.us.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
dol.gov. @2607:f250:d008:2022:65:106:133:211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
dol.gov. @2607:f250:d024:3001:152:180:20:20 (stlns08.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
dol.gov. @2607:f250:d008:2022:65:106:133:212 (ns2.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
doleta.gov. @2607:f250:d024:3001:152:180:20:20 (stlns08.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
doleta.gov. @2607:f250:d008:2022:65:106:133:212 (ns2.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
doleta.gov. @2607:f250:d008:2022:65:106:133:211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
filelocal-wa.gov. @2604:d800:12::250 (ns1.venyu.com.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
foodsafety.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
foodsafety.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
foodsafety.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
foodsafety.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
framinghamma.gov. @2610:80:0:10e::20 (auth1.dns.rcn.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
fueleconomy.gov. @2620:0:2b30:304::96 (ns0.ornl.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
girlshealth.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
girlshealth.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
girlshealth.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
girlshealth.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
grants.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
grants.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
grants.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
grants.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
health.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
health.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
health.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
health.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthfinder.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthfinder.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthfinder.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthfinder.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthit.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthit.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthit.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthit.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthypeople.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthypeople.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthypeople.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
healthypeople.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
hhs.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
hhs.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
hhs.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
hhs.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
hiv.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
hiv.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
hiv.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
hiv.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ihs.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ihs.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ihs.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ihs.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
montgomerycountymd.gov. @2610:80:0:10e::20 (auth1.dns.rcn.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
msha.gov. @2607:f250:d024:3001:152:180:20:20 (stlns08.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
msha.gov. @2607:f250:d008:2022:65:106:133:211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
msha.gov. @2607:f250:d008:2022:65:106:133:212 (ns2.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
nga.gov. @2610:80:0:10e::20 (auth1.dns.rcn.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
nist.gov. @2610:20:6b01:4::10 (bea.nist.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
nycourts.gov. @2607:f7a8:c01:1::2 (ns2.fibertechdns.com.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
nycourts.gov. @2607:f7a8::1 (ns1.fibertechdns.com.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
organdonor.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
organdonor.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
organdonor.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
organdonor.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ornl.gov. @2620:0:2b30:304::96 (ns0.ornl.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
osha.gov. @2607:f250:d008:2022:65:106:133:211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
osha.gov. @2607:f250:d024:3001:152:180:20:20 (stlns08.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
osha.gov. @2607:f250:d008:2022:65:106:133:212 (ns2.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
phe.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
phe.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
phe.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
phe.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
psc.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
psc.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
psc.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
psc.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
samhsa.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
samhsa.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
samhsa.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
samhsa.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
stopalcoholabuse.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
stopalcoholabuse.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
stopalcoholabuse.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
stopalcoholabuse.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
stopbullying.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
stopbullying.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
stopbullying.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
stopbullying.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
surgeongeneral.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
surgeongeneral.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
surgeongeneral.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
surgeongeneral.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
time.gov. @2610:20:6b01:4::10 (bea.nist.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
usability.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
usability.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
usability.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
usability.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
vaccines.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
vaccines.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
vaccines.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
vaccines.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
womenshealth.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
womenshealth.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
womenshealth.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
womenshealth.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
youth.gov. @2607:f220:0:1::2a (rh202ns1.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
youth.gov. @2607:f220:0:1::2b (rh202ns2.355.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
youth.gov. @2607:f220:0:1::2c (rh120ns1.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
youth.gov. @2607:f220:0:1::2d (rh120ns2.368.dhhs.gov.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
(dig +edns +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record to be present
expect: OPT record to be present
expect: EDNS Version 0 in response
See RFC6891
If you do not wish to support EDNS you should still respond to the query. You can ignore the OPT record and respond to the query as if the OPT record was not present or you can respond with the error code FORMERR.
cherokeecounty-nc.gov. @66.119.96.10 (ns3.brmemc.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=noopt signed=noopt ednstcp=noopt
cherokeecounty-nc.gov. @66.119.96.9 (ns1.brmemc.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=noopt signed=noopt ednstcp=noopt
chilmarkma.gov. @54.68.129.253 (ns.visp.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=noopt signed=noopt ednstcp=noopt
chilmarkma.gov. @52.26.163.163 (ns2.visp.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=noopt signed=noopt ednstcp=noopt
morrobayca.gov. @199.87.184.195 (ns1.kisnet1.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=noopt signed=noopt ednstcp=noopt
morrobayca.gov. @199.87.185.1 (ns1.socaldata.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=noopt signed=noopt ednstcp=noopt
morrobayca.gov. @199.87.185.2 (ns2.socaldata.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=noopt signed=noopt ednstcp=connection-refused
(dig +edns +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record to be present
expect: OPT record to be present
expect: EDNS Version 0 in response
See RFC6891
benefits.gov. @63.106.133.211 (ns1.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=timeout ednsopt=timeout edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
collegeparkmd.gov. @209.183.192.65 (dns2.atlantech.net.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
collegeparkmd.gov. @2607:f050:205::35 (dns1.atlantech.net.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
dol.gov. @63.106.133.212 (ns2.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=timeout optlist=ok signed=timeout ednstcp=ok
doleta.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
doleta.gov. @63.106.133.211 (ns1.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=timeout ednsopt=ok edns1opt=timeout do=timeout ednsflags=ok optlist=timeout signed=timeout ednstcp=ok
loudoun.gov. @64.94.96.47 (ns047a.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
loudoun.gov. @69.25.81.45 (ns045b.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
montgomerycountymd.gov. @209.183.192.65 (dns2.atlantech.net.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
montgomerycountymd.gov. @2607:f050:192::65 (dns2.atlantech.net.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
msha.gov. @63.106.133.211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=ok edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
msha.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=timeout optlist=ok signed=timeout ednstcp=ok
osha.gov. @63.106.133.211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=ok edns@512=timeout ednsopt=ok edns1opt=ok do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
osha.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
(dig +edns=1 +norec soa $zone @$server)
expect: status: BADVERS
expect: SOA record to NOT be present
expect: OPT record to be present
expect: EDNS Version 0 in response
See RFC6891, 6.1.3. OPT Record TTL Field Use
Timeouts on this test and edns1opt and possibly ednsflags indicate a badly configured firewall that is dropping packets just because the EDNS version is not zero. This breaks EDNS version negotiation. There is no known security flaw that will be triggered by allowing these packets through to the server.
apprenticeship.gov. @63.106.133.212 (ns2.dol.gov.): dns=timeout edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=timeout signed=ok,yes ednstcp=ok
barroncountywi.gov. @173.165.247.65 (ns2.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
barroncountywi.gov. @71.5.109.42 (ns1.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
bremertonwa.gov. @146.218.148.228 (ns1.bremertonwa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok ednstcp=ok
bts.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bts.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bts.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bts.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bucksportmaine.gov. @71.5.109.42 (ns1.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
bucksportmaine.gov. @173.165.247.65 (ns2.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
collegeparkmd.gov. @209.183.192.65 (dns2.atlantech.net.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
collegeparkmd.gov. @2607:f050:205::35 (dns1.atlantech.net.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
dol.gov. @63.106.133.212 (ns2.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=timeout optlist=ok signed=timeout ednstcp=ok
doleta.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
dot.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
dot.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
dot.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
dot.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
ecfr.gov. @162.140.252.180 (ns2.gpo.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
ecfr.gov. @162.140.64.100 (ns1.gpo.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
eia.gov. @205.254.159.231 (redball.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=ok ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
eia.gov. @205.254.135.9 (phantom.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=noopt,noaa ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
eia.gov. @2607:f368:1000:1001::1009 (phantom.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=noopt,noaa ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
federalregister.gov. @162.140.64.100 (ns1.gpo.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
federalregister.gov. @162.140.252.180 (ns2.gpo.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
loudoun.gov. @64.94.96.47 (ns047a.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
loudoun.gov. @69.25.81.45 (ns045b.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
montgomerycountymd.gov. @209.183.192.65 (dns2.atlantech.net.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
montgomerycountymd.gov. @2607:f050:192::65 (dns2.atlantech.net.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
navajo-nsn.gov. @66.133.170.3 (auth.roch.ny.frontiernet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
navajo-nsn.gov. @2001:1960:20::303 (auth.roch.ny.frontiernet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
navajo-nsn.gov. @199.224.64.201 (auth.dlls.pa.frontiernet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
navajo-nsn.gov. @2001:1960:20:4000::201 (auth.dlls.pa.frontiernet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
newarknj.gov. @216.59.57.3 (b3.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
newarknj.gov. @2602:ffe2:54::1 (b3.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
newarknj.gov. @216.59.60.3 (a3.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
nhtsa.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nhtsa.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nhtsa.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nhtsa.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nolensvilletn.gov. @4.15.235.249 (dns3.vc3.com.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=timeout signed=ok ednstcp=ok
panynj.gov. @206.137.235.80 (tccedns1.panynj.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
panynj.gov. @65.254.128.110 (tccedns2.panynj.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
phila.gov. @170.115.248.12 (ns1.phila.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
phila.gov. @170.115.249.13 (ns2.phila.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok,expire signed=ok ednstcp=ok
safercar.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
safercar.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
safercar.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
safercar.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
southbendin.gov. @207.32.250.4 (ns4.microintegration.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
southbendin.gov. @207.32.250.3 (ns3.microintegration.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
ssa.gov. @137.200.43.9 (dns2.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
ssa.gov. @2001:1930:d07:1::9 (dns2.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
ssa.gov. @137.200.43.8 (dns1.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
ssa.gov. @2001:1930:d07:1::8 (dns1.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
transportation.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
transportation.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
transportation.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
transportation.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
unioncountyga.gov. @66.96.142.145 (ns2.netfirms.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
unioncountyga.gov. @65.254.254.157 (ns1.netfirms.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
upperarlingtonoh.gov. @216.59.57.7 (b7.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
upperarlingtonoh.gov. @2602:ffe2:54::7 (b7.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
upperarlingtonoh.gov. @216.59.60.7 (a7.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
vidol.gov. @65.254.254.102 (ns1.yourhostingaccount.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
vidol.gov. @65.254.254.155 (ns2.yourhostingaccount.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
wakeforestnc.gov. @4.15.235.249 (dns3.vc3.com.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=timeout signed=ok ednstcp=ok
willaminaoregon.gov. @173.165.247.65 (ns2.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
willaminaoregon.gov. @71.5.109.42 (ns1.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
(dig +edns +dnssec +bufsize=512 +norec +ignore dnskey $zone @$server)
expect: status: NOERROR
expect: OPT record to be present
expect: UDP DNS message size to be less than or equal to 512 bytes
See RFC6891, 7. Transport Considerations
This test requires that there be a signed DNSKEY RRset at the zone apex to trigger truncation for the test to be valid. Errors may be under reported as a result.
timeout and notimp may be due to mishandling of DNSKEY by the nameserver.benefits.gov. @63.106.133.211 (ns1.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=timeout ednsopt=timeout edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
cjis.gov. @153.31.192.139 (ns2.cjis.gov.): dns=ok edns=ok edns1=ok edns@512=toobig ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
cjis.gov. @2607:f330:2003:403::201 (ns2.cjis.gov.): dns=ok edns=ok edns1=ok edns@512=toobig ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
cjis.gov. @153.31.113.139 (ns1.cjis.gov.): dns=ok edns=ok edns1=ok edns@512=toobig ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
cjis.gov. @2607:f330:2002:403::201 (ns1.cjis.gov.): dns=ok edns=ok edns1=ok edns@512=toobig ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
doleta.gov. @63.106.133.211 (ns1.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=timeout ednsopt=ok edns1opt=timeout do=timeout ednsflags=ok optlist=timeout signed=timeout ednstcp=ok
eia.gov. @205.254.135.9 (phantom.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=noopt,noaa ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
eia.gov. @2607:f368:1000:1001::1009 (phantom.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=noopt,noaa ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
gahanna.gov. @198.30.9.30 (ns1.gahanna.gov.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=refused
gahanna.gov. @76.10.208.66 (ns3.gahanna.gov.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=refused
gahanna.gov. @76.10.208.67 (ns4.gahanna.gov.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=refused
loudoun.gov. @64.94.96.47 (ns047a.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
loudoun.gov. @69.25.81.45 (ns045b.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
nicsezcheckfbi.gov. @153.31.192.139 (ns2.cjis.gov.): dns=ok edns=ok edns1=ok edns@512=toobig ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
nicsezcheckfbi.gov. @2607:f330:2003:403::201 (ns2.cjis.gov.): dns=ok edns=ok edns1=ok edns@512=toobig ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
nicsezcheckfbi.gov. @153.31.113.139 (ns1.cjis.gov.): dns=ok edns=ok edns1=ok edns@512=toobig ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
nicsezcheckfbi.gov. @2607:f330:2002:403::201 (ns1.cjis.gov.): dns=ok edns=ok edns1=ok edns@512=toobig ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
osha.gov. @63.106.133.211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=ok edns@512=timeout ednsopt=ok edns1opt=ok do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
(dig +ednsopt=100 +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record to be present
expect: OPT record to be present
expect: OPT=100 to not be present
See RFC6891, 6.1.2 Wire Format
azcourts.gov. @67.131.23.11 (nsa.azcourts.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
azcourts.gov. @67.131.23.12 (nsb.azcourts.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
benefits.gov. @63.106.133.211 (ns1.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=timeout ednsopt=timeout edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
buffalony.gov. @129.44.133.92 (ns1.ci.buffalo.ny.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
buffalony.gov. @129.44.133.90 (ns2.ci.buffalo.ny.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
daviscountyutah.gov. @168.180.225.92 (dc-dhcp.co.davis.ut.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
daviscountyutah.gov. @168.180.225.92 (dc-dhcp.daviscountyutah.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
daviscountyutah.gov. @168.180.200.18 (dc-dns.co.davis.ut.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
daviscountyutah.gov. @168.180.200.18 (dc-dns.daviscountyutah.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
efiletexas.gov. @168.39.176.11 (cns1.courts.state.tx.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
gilbertaz.gov. @216.119.106.3 (ns2.newtekdns.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
gilbertaz.gov. @216.119.106.2 (ns1.newtekdns.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
kcmo.gov. @205.167.180.28 (pubdns1.kcmo.org.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
longbeach.gov. @204.108.16.112 (dns02.ci.long-beach.ca.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
longbeach.gov. @204.108.16.111 (dns01.ci.long-beach.ca.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
longbeach.gov. @204.108.18.112 (eocdns02.ci.long-beach.ca.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
longbeach.gov. @204.108.18.111 (eocdns01.ci.long-beach.ca.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
loudoun.gov. @64.94.96.47 (ns047a.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
loudoun.gov. @69.25.81.45 (ns045b.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
lumpkincounty.gov. @192.34.175.93 (ins2.georgiadns.net.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
lumpkincounty.gov. @65.254.211.250 (ins1.georgiadns.net.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
nashville.gov. @170.190.43.254 (ns2.nashville.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
nashville.gov. @170.190.30.5 (ns1.nashville.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
nh.gov. @199.192.10.37 (oldman.state.nh.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
nh.gov. @199.192.10.41 (whitemtns.state.nh.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
ntsb.gov. @199.173.155.4 (ns.ntsb.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=timeout
rsa-al.gov. @74.254.150.11 (ns2.rsa-al.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
rsa-al.gov. @74.254.150.10 (ns1.rsa-al.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
sba.gov. @40.80.220.233 (Brahmaputra.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sba.gov. @40.90.247.199 (Dnieper.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sba.gov. @40.90.245.130 (Yamuna.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sba.gov. @40.80.220.253 (Volturno.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sbir.gov. @40.90.247.199 (Dnieper.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sbir.gov. @40.90.245.130 (Yamuna.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sbir.gov. @40.80.220.233 (Brahmaputra.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sbir.gov. @40.80.220.253 (Volturno.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
scag.gov. @167.7.37.91 (dns2.scag.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
scag.gov. @167.7.37.90 (dns1.scag.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
scdhec.gov. @74.254.77.8 (dns2.dhec.sc.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
scdhec.gov. @74.254.77.40 (dns1.dhec.sc.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
sd.gov. @206.176.52.2 (ns1.k12.sd.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
txcourts.gov. @168.39.176.11 (cns1.txcourts.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
utcourts.gov. @65.100.238.13 (utc.utcourts.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
visitnh.gov. @34.234.202.134 (ns2.silvertech.net.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
visitnh.gov. @64.223.223.165 (ns1.silvertech.net.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
wv.gov. @129.71.200.10 (dns3.state.wv.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
wv.gov. @129.71.254.12 (dns.state.wv.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
(dig +ednsopt=100 +edns=1 +norec soa $zone @$server)
expect: status: BADVERS
expect: SOA record to NOT be present
expect: OPT record to be present
expect: OPT=100 to not be present
expect: EDNS Version 0 in response
See RFC6891
apprenticeship.gov. @63.106.133.211 (ns1.dol.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
azcourts.gov. @67.131.23.11 (nsa.azcourts.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
azcourts.gov. @67.131.23.12 (nsb.azcourts.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
barroncountywi.gov. @173.165.247.65 (ns2.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
barroncountywi.gov. @71.5.109.42 (ns1.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
bremertonwa.gov. @146.218.148.228 (ns1.bremertonwa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok ednstcp=ok
bts.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bts.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bts.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bts.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bucksportmaine.gov. @71.5.109.42 (ns1.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
bucksportmaine.gov. @173.165.247.65 (ns2.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
buffalony.gov. @129.44.133.92 (ns1.ci.buffalo.ny.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
buffalony.gov. @129.44.133.90 (ns2.ci.buffalo.ny.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
daviscountyutah.gov. @168.180.225.92 (dc-dhcp.co.davis.ut.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
daviscountyutah.gov. @168.180.225.92 (dc-dhcp.daviscountyutah.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
daviscountyutah.gov. @168.180.200.18 (dc-dns.co.davis.ut.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
daviscountyutah.gov. @168.180.200.18 (dc-dns.daviscountyutah.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
dol.gov. @63.106.133.211 (ns1.dol.gov.): dns=timeout edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=timeout signed=ok,yes ednstcp=ok
doleta.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
doleta.gov. @63.106.133.211 (ns1.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=timeout ednsopt=ok edns1opt=timeout do=timeout ednsflags=ok optlist=timeout signed=timeout ednstcp=ok
dot.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
dot.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
dot.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
dot.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
ecfr.gov. @162.140.252.180 (ns2.gpo.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
ecfr.gov. @162.140.64.100 (ns1.gpo.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
efiletexas.gov. @168.39.176.11 (cns1.courts.state.tx.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
eia.gov. @205.254.159.231 (redball.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=ok ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
eia.gov. @205.254.135.9 (phantom.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=noopt,noaa ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
eia.gov. @2607:f368:1000:1001::1009 (phantom.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=noopt,noaa ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
federalregister.gov. @162.140.64.100 (ns1.gpo.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
federalregister.gov. @162.140.252.180 (ns2.gpo.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
gilbertaz.gov. @216.119.106.3 (ns2.newtekdns.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
gilbertaz.gov. @216.119.106.2 (ns1.newtekdns.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
hopkinton-nh.gov. @67.228.255.5 (ns2.softlayer.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
hopkinton-nh.gov. @2607:f0d0:0:f:2::1 (ns2.softlayer.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
hopkinton-nh.gov. @67.228.254.4 (ns1.softlayer.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
hopkinton-nh.gov. @2607:f0d0:0:f:1::1 (ns1.softlayer.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
kcmo.gov. @205.167.180.28 (pubdns1.kcmo.org.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
longbeach.gov. @204.108.16.112 (dns02.ci.long-beach.ca.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
longbeach.gov. @204.108.16.111 (dns01.ci.long-beach.ca.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
longbeach.gov. @204.108.18.112 (eocdns02.ci.long-beach.ca.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
longbeach.gov. @204.108.18.111 (eocdns01.ci.long-beach.ca.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
loudoun.gov. @64.94.96.47 (ns047a.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
loudoun.gov. @69.25.81.45 (ns045b.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
lumpkincounty.gov. @192.34.175.93 (ins2.georgiadns.net.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
lumpkincounty.gov. @65.254.211.250 (ins1.georgiadns.net.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
msha.gov. @63.106.133.211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=ok edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
nashville.gov. @170.190.43.254 (ns2.nashville.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
nashville.gov. @170.190.30.5 (ns1.nashville.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
navajo-nsn.gov. @66.133.170.3 (auth.roch.ny.frontiernet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
navajo-nsn.gov. @2001:1960:20::303 (auth.roch.ny.frontiernet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
navajo-nsn.gov. @199.224.64.201 (auth.dlls.pa.frontiernet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
navajo-nsn.gov. @2001:1960:20:4000::201 (auth.dlls.pa.frontiernet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
newarknj.gov. @216.59.57.3 (b3.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
newarknj.gov. @2602:ffe2:54::1 (b3.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
newarknj.gov. @216.59.60.3 (a3.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
nh.gov. @199.192.10.37 (oldman.state.nh.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
nh.gov. @199.192.10.41 (whitemtns.state.nh.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
nhtsa.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nhtsa.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nhtsa.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nhtsa.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nolensvilletn.gov. @4.15.235.249 (dns3.vc3.com.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=timeout signed=ok ednstcp=ok
ntsb.gov. @199.173.155.4 (ns.ntsb.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=timeout
osha.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
panynj.gov. @206.137.235.80 (tccedns1.panynj.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
panynj.gov. @65.254.128.110 (tccedns2.panynj.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
phila.gov. @170.115.248.12 (ns1.phila.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
phila.gov. @170.115.249.13 (ns2.phila.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=ok,expire signed=ok ednstcp=ok
rsa-al.gov. @74.254.150.11 (ns2.rsa-al.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
rsa-al.gov. @74.254.150.10 (ns1.rsa-al.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
safercar.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
safercar.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
safercar.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
safercar.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
sba.gov. @40.80.220.233 (Brahmaputra.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sba.gov. @40.90.247.199 (Dnieper.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sba.gov. @40.90.245.130 (Yamuna.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sba.gov. @40.80.220.253 (Volturno.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sbir.gov. @40.90.247.199 (Dnieper.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sbir.gov. @40.90.245.130 (Yamuna.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sbir.gov. @40.80.220.233 (Brahmaputra.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
sbir.gov. @40.80.220.253 (Volturno.sba.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=ok
scag.gov. @167.7.37.91 (dns2.scag.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
scag.gov. @167.7.37.90 (dns1.scag.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
scdhec.gov. @74.254.77.8 (dns2.dhec.sc.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
scdhec.gov. @74.254.77.40 (dns1.dhec.sc.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
sd.gov. @206.176.52.2 (ns1.k12.sd.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
southbendin.gov. @207.32.250.4 (ns4.microintegration.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
southbendin.gov. @207.32.250.3 (ns3.microintegration.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
ssa.gov. @137.200.43.9 (dns2.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
ssa.gov. @2001:1930:d07:1::9 (dns2.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
ssa.gov. @137.200.43.8 (dns1.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
ssa.gov. @2001:1930:d07:1::8 (dns1.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
transportation.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
transportation.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
transportation.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
transportation.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
txcourts.gov. @168.39.176.11 (cns1.txcourts.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
unioncountyga.gov. @66.96.142.145 (ns2.netfirms.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
unioncountyga.gov. @65.254.254.157 (ns1.netfirms.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
upperarlingtonoh.gov. @216.59.57.7 (b7.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
upperarlingtonoh.gov. @2602:ffe2:54::7 (b7.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
upperarlingtonoh.gov. @216.59.60.7 (a7.uberns.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
usaid.gov. @152.180.39.93 (ns08.usaid.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok,yes ednstcp=ok
usaid.gov. @12.96.42.221 (ns07.usaid.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok,yes ednstcp=ok
utcourts.gov. @65.100.238.13 (utc.utcourts.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
vidol.gov. @65.254.254.102 (ns1.yourhostingaccount.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
vidol.gov. @65.254.254.155 (ns2.yourhostingaccount.com.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
visitnh.gov. @34.234.202.134 (ns2.silvertech.net.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=echoed edns1opt=echoed do=ok ednsflags=ok optlist=ok,subnet signed=ok ednstcp=ok
visitnh.gov. @64.223.223.165 (ns1.silvertech.net.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
wakeforestnc.gov. @4.15.235.249 (dns3.vc3.com.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=ok optlist=timeout signed=ok ednstcp=ok
willaminaoregon.gov. @173.165.247.65 (ns2.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
willaminaoregon.gov. @71.5.109.42 (ns1.avenet.net.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok signed=ok ednstcp=ok
wv.gov. @129.71.200.10 (dns3.state.wv.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
wv.gov. @129.71.254.12 (dns.state.wv.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=ok
(dig +dnssec +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record to be present
expect: OPT record to be present
expect: EDNS Version 0 in response
expect: DO flag in response if RRSIG is present in response
See RFC3225
Timeouts on this test (and signed) alone can indicate fragmentation issues at the sender. This would need to be confirmed with more testing.
apprenticeship.gov. @63.106.133.211 (ns1.dol.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
benefits.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
dol.gov. @63.106.133.212 (ns2.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=timeout optlist=ok signed=timeout ednstcp=ok
doleta.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
doleta.gov. @63.106.133.211 (ns1.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=timeout ednsopt=ok edns1opt=timeout do=timeout ednsflags=ok optlist=timeout signed=timeout ednstcp=ok
loudoun.gov. @64.94.96.47 (ns047a.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
loudoun.gov. @69.25.81.45 (ns045b.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
msha.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=timeout optlist=ok signed=timeout ednstcp=ok
ncifcrf.gov. @128.231.128.251 (ns.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=ok optlist=ok,expire,cookie,subnet signed=timeout ednstcp=timeout
osha.gov. @63.106.133.211 (ns1.dol.gov.): dns=timeout edns=timeout edns1=ok edns@512=timeout ednsopt=ok edns1opt=ok do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
(dig +ednsflags=0x80 +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record to be present
expect: OPT record to be present
expect: MBZ not to be present
expect: EDNS Version 0 in response
See RFC6891, 6.1.4 Flags
apprenticeship.gov. @63.106.133.211 (ns1.dol.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
bremertonwa.gov. @146.218.148.228 (ns1.bremertonwa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok ednstcp=ok
bts.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bts.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bts.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
bts.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
dol.gov. @63.106.133.212 (ns2.dol.gov.): dns=timeout edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=timeout optlist=ok signed=timeout ednstcp=ok
doleta.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
dot.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
dot.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
dot.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
dot.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
eia.gov. @205.254.159.231 (redball.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=ok ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
eia.gov. @205.254.135.9 (phantom.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=noopt,noaa ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
eia.gov. @2607:f368:1000:1001::1009 (phantom.eia.gov.): dns=ok edns=ok edns1=formerr,version-not-zero edns@512=noopt,noaa ednsopt=ok edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=mbz optlist=formerr,subnet signed=ok,yes ednstcp=ok
loudoun.gov. @64.94.96.47 (ns047a.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
loudoun.gov. @69.25.81.45 (ns045b.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
msha.gov. @63.106.133.212 (ns2.dol.gov.): dns=ok edns=timeout edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=timeout optlist=ok signed=timeout ednstcp=ok
nhtsa.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nhtsa.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nhtsa.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
nhtsa.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
panynj.gov. @206.137.235.80 (tccedns1.panynj.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
panynj.gov. @65.254.128.110 (tccedns2.panynj.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok ednstcp=ok
safercar.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
safercar.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
safercar.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
safercar.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
ssa.gov. @137.200.43.9 (dns2.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
ssa.gov. @2001:1930:d07:1::9 (dns2.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
ssa.gov. @137.200.43.8 (dns1.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
ssa.gov. @2001:1930:d07:1::8 (dns1.ssa.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
transportation.gov. @204.68.194.200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
transportation.gov. @2001:19e8:d::200 (edns2.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
transportation.gov. @204.68.194.100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
transportation.gov. @2001:19e8:d::100 (edns1.dot.gov.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
(dig +norec +edns +dnssec +bufsize=512 +noad +vc dnskey -q $zone @$server)
cancer.gov. @2607:f220:402:1801::a570:4e6 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
docline.gov. @130.14.252.53 (gslb03.nlm.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=reset
docline.gov. @130.14.252.50 (gslb01.nlm.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,subnet signed=ok,yes ednstcp=reset
drugabuse.gov. @165.112.4.230 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
drugabuse.gov. @2607:f220:402:1801::a570:4e6 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
drugabuse.gov. @128.231.128.251 (ns.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
drugabuse.gov. @2607:f220:404:101::80e7:80fb (ns.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
gahanna.gov. @198.30.9.30 (ns1.gahanna.gov.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=refused
gahanna.gov. @76.10.208.66 (ns3.gahanna.gov.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=refused
gahanna.gov. @76.10.208.67 (ns4.gahanna.gov.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok ednstcp=refused
genome.gov. @2607:f220:402:1801::a570:4e6 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
hrsa.gov. @2607:f220:402:1801::a570:4e6 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
hrsa.gov. @2607:f220:404:101::80e7:80fb (ns.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
kauai.gov. @98.124.243.2 (dns3.name-services.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=reset
kauai.gov. @2620:10f:5000:5002:98:124:243:2 (dns3.name-services.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=reset
kauai.gov. @64.98.151.2 (dns4.name-services.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=reset
kauai.gov. @2604:4000:4000:0:64:98:151:2 (dns4.name-services.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=reset
kauai.gov. @98.124.243.3 (dns5.name-services.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=reset
kauai.gov. @2620:10f:5000:5002:98:124:243:3 (dns5.name-services.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=reset
kauai.gov. @64.98.151.1 (dns2.name-services.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=reset
kauai.gov. @2604:4000:4000:0:64:98:151:1 (dns2.name-services.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=reset
kauai.gov. @98.124.243.1 (dns1.name-services.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=reset
kauai.gov. @2620:10f:5000:5002:98:124:243:1 (dns1.name-services.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=reset
loudoun.gov. @64.94.96.47 (ns047a.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
loudoun.gov. @69.25.81.45 (ns045b.inapdns.net.): dns=ok edns=noopt edns1=noerror,noopt,soa edns@512=noopt ednsopt=noopt edns1opt=noerror,noopt,soa do=noopt ednsflags=noopt optlist=ok,subnet signed=noopt ednstcp=connection-refused
louisvilleky.gov. @199.201.216.4 (dns2.louisvilleky.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire signed=ok ednstcp=timeout
louisvilleky.gov. @199.201.216.3 (dns1.louisvilleky.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire signed=ok ednstcp=timeout
ms.gov. @192.42.4.13 (ns1.its.state.ms.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire signed=ok ednstcp=connection-refused
ncifcrf.gov. @128.231.128.251 (ns.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=ok optlist=ok,expire,cookie,subnet signed=timeout ednstcp=timeout
ncifcrf.gov. @2607:f220:404:101::80e7:80fb (ns.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
ncifcrf.gov. @165.112.4.230 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
ncifcrf.gov. @2607:f220:402:1801::a570:4e6 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
nih.gov. @128.231.128.251 (ns.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
nih.gov. @2607:f220:404:101::80e7:80fb (ns.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
nih.gov. @165.112.4.230 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
nih.gov. @2607:f220:402:1801::a570:4e6 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
ntsb.gov. @199.173.155.4 (ns.ntsb.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=formerr,echoed edns1opt=formerr,version-not-zero,echoed do=ok ednsflags=ok optlist=formerr,subnet signed=ok ednstcp=timeout
nyjuror.gov. @45.77.82.193 (ns18.zoneedit.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire signed=ok ednstcp=connection-refused
smokefree.gov. @128.231.128.251 (ns.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
smokefree.gov. @165.112.4.230 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
smokefree.gov. @2607:f220:402:1801::a570:4e6 (ns3.nih.gov.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=timeout
traviscountytx.gov. @198.214.208.3 (tcgs.co.travis.tx.us.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire signed=ok ednstcp=connection-refused
© 2019 Internet Systems Consortium