Generated: 2019-06-24T00:00:00Z -- 2019-06-24T00:05:38Z
The following report was generated automatically.
Packet loss and network issues may have introduced false positives.
Please verify the results before taking action.
You can report issues with this report to: marka@isc.org
Most recursive resolvers now support EDNS. Lack of EDNS support in authoritative servers results in additional queries being made as the recursive servers need to retry with plain DNS and results in slower DNS resolution.
Not answering EDNS queries is particularly bad as that is indistingishable from packet loss.
Incorrect EDNS behaviour when presented with unknown EDNS versions and EDNS options can result in DNS resolution failures and/or DNSSEC validation failures.
Failure to run fully EDNS compliant nameservers will make it hard to deploy developments like DNS COOKIES which provides mitigation against DNS amplification attacks, off path spoofing resistance, RRL advoidance and excessive resource usage.
ok - test passed.
badvers - BADVERS returned.
badversion - expected EDNS version not found.
echoed - EDNS option echoed back.
formerr - FORMERR returned.
mbz - EDNS flags echoed back.
nodo - EDNS DO flag not echoed.
noopt - OPT record not found when expected.
nosoa - SOA not found when expected.
notimp - NOTIMP returned.
refused - REFUSED returned.
servfail - SERVFAIL returned.
soa - SOA found when not expected.
status - expected status code not found.
toobig - UDP response bigger that advertised buffer size.
version - expected EDNS version not found.
reset - TCP connection reset.
timeout - lookup timed out.
Of servers that responded at all:
6727 of 6744 (99.75%) responded to a EDNS version 0 query
6728 of 6744 (99.76%) responded to a EDNS unknown option
6725 of 6744 (99.72%) responded to a EDNS unknown flags
6724 of 6744 (99.70%) responded to a EDNS version 1 query
6724 of 6744 (99.70%) responded to a EDNS unknown version and option
6729 of 6744 (99.78%) of nameservers support EDNS
6708 of 6729 (99.69%) EDNS capable servers are all ok
6718 of 6729 (99.84%) EDNS capable servers support unknown EDNS versions
6728 of 6729 (99.99%) EDNS capable servers support unknown EDNS options
6725 of 6729 (99.94%) EDNS capable servers support unknown EDNS flags
6718 of 6729 (99.84%) EDNS capable servers support unknown EDNS version and options
6726 of 6729 (99.96%) EDNS capable servers support DO=1
3286 of 6729 (48.83%) EDNS capable servers return a NSID option
2105 of 6729 (31.28%) EDNS capable servers return a EXPIRE option
1837 of 6729 (27.30%) EDNS capable servers return a SUBNET option
650 of 6729 (9.66%) EDNS capable servers return a Server EDNS COOKIE option
cm. cm.cctld.authdns.ripe.net: no address records found (NXDOMAIN)
et. a.nic.et: address lookups failed
et. b.nic.et: address lookups failed
mg. pch.nic.mg: no address records found (NXDOMAIN)
ni. ns.cr: no address records found
td. ns1.nic.td: no address records found (NXDOMAIN)
xn--fzc2c9e2c. ns3.ac.lk: no address records found (NXDOMAIN)
xn--mgba3a4f16a. ns.irnic.ir: address lookups failed
xn--xkc2al3hye2a. ns3.ac.lk: no address records found (NXDOMAIN)
xn--ygbi2ammx. idn.pnina.ps: no address records found (NXDOMAIN)
(dig +noedns +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record
cm. @198.6.1.82 (auth02.ns.uu.net.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail,nsid,cookie,subnet signed=servfail ednstcp=servfail
dj. @196.201.196.41 (bow5.intnet.dj.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail signed=servfail ednstcp=servfail
fj. @128.32.136.3 (adns1.berkeley.edu.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
fj. @2607:f140:ffff:fffe::3 (adns1.berkeley.edu.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
fj. @128.32.136.14 (adns2.berkeley.edu.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
fj. @2607:f140:ffff:fffe::e (adns2.berkeley.edu.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
km. @196.216.168.46 (ns-km.afrinic.net.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail,nsid signed=servfail ednstcp=servfail
km. @2001:43f8:120::46 (ns-km.afrinic.net.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail,nsid signed=servfail ednstcp=servfail
ne. @194.51.3.49 (bow.rain.fr.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused signed=refused ednstcp=refused
ne. @196.216.168.45 (ns-ne.afrinic.net.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail,nsid signed=servfail ednstcp=servfail
ne. @2001:43f8:120::45 (ns-ne.afrinic.net.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail,nsid signed=servfail ednstcp=servfail
ni. @200.62.64.1 (ns.tmx.com.ni.): dns=noaa edns=noaa edns1=ok edns@512=noaa ednsopt=noaa edns1opt=ok do=noaa ednsflags=noaa optlist=noaa signed=noaa ednstcp=noaa
td. @196.216.168.31 (ns-td.afrinic.net.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail,nsid signed=servfail ednstcp=servfail
td. @2001:43f8:120::31 (ns-td.afrinic.net.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail,nsid signed=servfail ednstcp=servfail
xn--d1alf. @78.104.145.4 (dns-mk.univie.ac.at.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused,nsid,cookie,subnet signed=refused ednstcp=refused
xn--d1alf. @2001:628:453:bb::4 (dns-mk.univie.ac.at.): dns=refused edns=refused edns1=ok edns@512=refused ednsopt=refused edns1opt=ok do=refused ednsflags=refused optlist=refused,nsid,cookie,subnet signed=refused ednstcp=refused
xn--j1amh. @212.1.66.247 (nsi.uanic.net.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail signed=servfail ednstcp=servfail
xn--mgbai9azgqp6j. @202.83.164.167 (ns1.ntc.net.pk.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail signed=servfail ednstcp=ok
xn--mgbai9azgqp6j. @175.107.192.11 (ns2.ntc.net.pk.): dns=servfail edns=servfail edns1=ok edns@512=servfail ednsopt=servfail edns1opt=ok do=servfail ednsflags=servfail optlist=servfail signed=servfail ednstcp=servfail
af. @185.17.236.111 (ns.coccaregistry.org.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=refused
am. @194.0.1.26 (ns-cdn.amnic.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
cd. @92.222.179.91 (ns-root-5.scpt-network.com.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ci. @213.136.100.81 (ns.nic.ci.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ck. @130.195.6.10 (downstage.mcs.vuw.ac.nz.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=connection-refused
cm. @195.24.192.17 (sanaga.camnet.cm.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
fj. @144.120.8.10 (manu.usp.ac.fj.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
gm. @196.49.1.87 (ns2.nic.gm.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
iq. @194.117.57.100 (ns1.cmc.iq.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ir. @193.189.123.2 (a.nic.ir.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
jm. @200.9.115.2 (ns.utechjamaica.edu.jm.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
kn. @185.17.236.111 (ns.coccaregistry.org.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=refused
lt. @194.0.18.1 (e.tld.lt.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
ly. @62.240.36.9 (dns.lttnet.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=connection-refused
sd. @196.29.180.14 (ans1.canar.sd.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
tg. @104.243.39.7 (ns2.admin.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=connection-refused
tg. @188.165.33.42 (ns5.admin.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ve. @150.185.130.16 (azmodan.ula.ve.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ws. @77.92.65.172 (ns6.dns.ws.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--1qqw23a. @42.83.130.1 (ta.ngtld.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--1qqw23a. @42.83.131.1 (tb.ngtld.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--1qqw23a. @42.83.132.1 (tc.ngtld.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--54b7fta0cc. @180.211.212.213 (bayanno.btcl.net.bd.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--55qx5d. @125.208.41.1 (b.ngtld.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--55qx5d. @125.208.42.1 (c.ngtld.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--fiqs8s. @125.208.36.1 (l.dns.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--fiqz9s. @125.208.36.1 (l.dns.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--io0a7i. @125.208.41.1 (b.ngtld.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--io0a7i. @125.208.42.1 (c.ngtld.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--j1amh. @195.123.1.7 (dns2.u-registry.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--mgba3a4f16a. @193.189.123.2 (a.nic.ir.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--mgbtx2b. @194.117.57.100 (ns1.cmc.iq.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--xhq521b. @42.83.130.1 (ta.ngtld.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--xhq521b. @42.83.131.1 (tb.ngtld.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--xhq521b. @42.83.132.1 (tc.ngtld.cn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--y9a3aq. @194.0.1.26 (ns-cdn.amnic.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
am. @2001:678:4::1a (ns-cdn.amnic.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
bd. @2407:5000:88:5::3 (dns.bd.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
bd. @2407:5000:88:4::232 (surma.btcl.net.bd.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
bd. @2407:5000:88:4::231 (jamuna.btcl.net.bd.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
bw. @2c0f:ff00:1:3::226 (dns1.nic.net.bw.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
bw. @2c0f:ff00:1:5::218 (dns2.nic.net.bw.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
bw. @2c0f:ff00:0:6::3 (master.btc.net.bw.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
bw. @2c0f:ff00:0:6::5 (master.btc.net.bw.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
cf. @2a04:1b00:6::1 (c.ns.cf.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ga. @2a04:1b00:e::1 (c.ns.ga.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
gq. @2a04:1b00:12::1 (c.ns.gq.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
lk. @2405:5400:3:1:203:143:29:3 (c.nic.lk.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ma. @2001:4288:1800:186::3 (ns1.registre.ma.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ma. @2001:4288:1800:186::4 (ns2.registre.ma.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ma. @2001:4288:1800:386::3 (ns3.registre.ma.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ma. @2001:4288:1800:386::4 (ns4.registre.ma.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
mh. @2405:400:0:2::33 (ns.ntamar.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ml. @2a04:1b00:2::1 (c.ns.ml.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
nr. @2403:f600:0:224::66 (ns0.cenpac.net.nr.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
nr. @2403:f600:0:225::9 (ns1.cenpac.net.nr.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
sr. @2803:a200:15:1001::2 (ns1.sr.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=connection-refused
sr. @2803:a200:15:1002::2 (ns2.sr.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=connection-refused
tg. @2001:41d0:8:5c79::3 (ns5.admin.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
tn. @2c0f:fab0:ffff:5:41:228:63:62 (ns2.ati.tn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
va. @2a01:b8:0:1:212:77:0:110 (john.vatican.va.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=ok
ve. @2001:1338::2 (ns1.nic.ve.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
ve. @2001:1338::3 (ns2.nic.ve.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--54b7fta0cc. @2407:5000:88:2::3 (bayanno.btcl.net.bd.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--54b7fta0cc. @2407:5000:88:1::2 (ekushey.btcl.net.bd.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--j1amh. @2607:5300:60:2e43::5 (dns1.u-registry.com.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--j1amh. @2a02:128:2:3::5 (dns2.u-registry.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--mgbc0a9azcg. @2001:4288:1800:186::3 (ns1.registre.ma.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--mgbc0a9azcg. @2001:4288:1800:186::4 (ns2.registre.ma.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--mgbc0a9azcg. @2001:4288:1800:386::3 (ns3.registre.ma.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--mgbc0a9azcg. @2001:4288:1800:386::4 (ns4.registre.ma.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--node. @2a04:1b00:a::4 (c.xn--node.globalanycastcloud.freenom.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--pgbs0dh. @2c0f:fab0:ffff:5:41:228:63:62 (ns2.ati.tn.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
xn--y9a3aq. @2001:678:4::1a (ns-cdn.amnic.net.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
zw. @2c0f:f758:0:13::42 (ns2.telone.co.zw.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=timeout edns1opt=timeout do=timeout ednsflags=timeout optlist=timeout signed=timeout ednstcp=timeout
(dig +edns +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record to be present
expect: OPT record to be present
expect: EDNS Version 0 in response
See RFC6891
cn. @195.219.8.90 (f.dns.cn.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
xn--90ae. @2a02:6a80::193:68:3:232 (b.nic.bg.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
xn--fiqz9s. @66.198.183.66 (n.dns.cn.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=timeout optlist=timeout signed=ok,yes ednstcp=ok
(dig +edns=1 +norec soa $zone @$server)
expect: status: BADVERS
expect: SOA record to NOT be present
expect: OPT record to be present
expect: EDNS Version 0 in response
See RFC6891, 6.1.3. OPT Record TTL Field Use
Timeouts on this test and edns1opt and possibly ednsflags indicate a badly configured firewall that is dropping packets just because the EDNS version is not zero. This breaks EDNS version negotiation. There is no known security flaw that will be triggered by allowing these packets through to the server.
cn. @195.219.8.90 (f.dns.cn.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
ge. @212.72.130.11 (ns.nic.ge.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
kp. @175.45.176.15 (ns1.kptc.kp.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok ednstcp=ok
kp. @175.45.176.16 (ns2.kptc.kp.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok ednstcp=ok
lb. @193.188.128.14 (zeina.aub.edu.lb.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
mp. @202.128.29.2 (ns1.nic.mp.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
mp. @202.128.29.135 (ns2.nic.mp.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
mp. @75.101.129.89 (ns3.nic.mp.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
mp. @75.101.133.101 (ns4.nic.mp.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
vu. @202.80.32.9 (ns1-cctld.vunic.vu.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok,yes ednstcp=ok
xn--90ae. @2a02:6a80::193:68:3:232 (b.nic.bg.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
xn--fiqs8s. @66.198.183.66 (n.dns.cn.): dns=timeout edns=ok edns1=timeout edns@512=ok ednsopt=timeout edns1opt=ok do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
xn--fiqz9s. @66.198.183.66 (n.dns.cn.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=timeout optlist=timeout signed=ok,yes ednstcp=ok
(dig +edns +dnssec +bufsize=512 +norec +ignore dnskey $zone @$server)
expect: status: NOERROR
expect: OPT record to be present
expect: UDP DNS message size to be less than or equal to 512 bytes
See RFC6891, 7. Transport Considerations
This test requires that there be a signed DNSKEY RRset at the zone apex to trigger truncation for the test to be valid. Errors may be under reported as a result.
timeout and notimp may be due to mishandling of DNSKEY by the nameserver.af. @2a03:dd40:3::111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=refused
kn. @2a03:dd40:3::111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok ednstcp=refused
ms. @185.17.236.111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok ednstcp=refused
ms. @2a03:dd40:3::111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok ednstcp=refused
sb. @185.17.236.111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=refused
sb. @2a03:dd40:3::111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=refused
tl. @185.17.236.111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=refused
tl. @2a03:dd40:3::111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=refused
xn--90ae. @2a02:6a80::193:68:3:232 (b.nic.bg.): dns=timeout edns=timeout edns1=timeout edns@512=timeout ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
xn--fiqs8s. @195.219.8.91 (m.dns.cn.): dns=ok edns=ok edns1=ok edns@512=timeout ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
(dig +ednsopt=100 +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record to be present
expect: OPT record to be present
expect: OPT=100 to not be present
See RFC6891, 6.1.2 Wire Format
cn. @66.198.183.65 (g.dns.cn.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=timeout edns1opt=timeout do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
domains. @2001:dcd:4::7 (demand.delta.aridns.net.au.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=timeout edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire signed=ok,yes ednstcp=ok
network. @2001:dcd:4::7 (demand.delta.aridns.net.au.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=timeout edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire signed=ok,yes ednstcp=ok
xn--fiqs8s. @66.198.183.66 (n.dns.cn.): dns=timeout edns=ok edns1=timeout edns@512=ok ednsopt=timeout edns1opt=ok do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
xn--fiqz9s. @195.219.8.91 (m.dns.cn.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=timeout edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
(dig +ednsopt=100 +edns=1 +norec soa $zone @$server)
expect: status: BADVERS
expect: SOA record to NOT be present
expect: OPT record to be present
expect: OPT=100 to not be present
expect: EDNS Version 0 in response
See RFC6891
cn. @195.219.8.90 (f.dns.cn.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
cn. @66.198.183.65 (g.dns.cn.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=timeout edns1opt=timeout do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
ge. @212.72.130.11 (ns.nic.ge.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
kp. @175.45.176.15 (ns1.kptc.kp.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok ednstcp=ok
kp. @175.45.176.16 (ns2.kptc.kp.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok ednstcp=ok
lb. @193.188.128.14 (zeina.aub.edu.lb.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
mp. @202.128.29.2 (ns1.nic.mp.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
mp. @202.128.29.135 (ns2.nic.mp.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
mp. @75.101.129.89 (ns3.nic.mp.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
mp. @75.101.133.101 (ns4.nic.mp.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok ednstcp=ok
vu. @202.80.32.9 (ns1-cctld.vunic.vu.): dns=ok edns=ok edns1=noerror,badversion,soa edns@512=ok ednsopt=ok edns1opt=noerror,badversion,soa do=ok ednsflags=ok optlist=ok,nsid signed=ok,yes ednstcp=ok
xn--fiqz9s. @195.219.8.91 (m.dns.cn.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=timeout edns1opt=timeout do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=ok
(dig +dnssec +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record to be present
expect: OPT record to be present
expect: EDNS Version 0 in response
expect: DO flag in response if RRSIG is present in response
See RFC3225
Timeouts on this test (and signed) alone can indicate fragmentation issues at the sender. This would need to be confirmed with more testing.
cn. @195.219.8.90 (f.dns.cn.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
cn. @66.198.183.65 (g.dns.cn.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=timeout edns1opt=timeout do=timeout ednsflags=ok optlist=ok signed=timeout ednstcp=ok
lk. @128.10.2.5 (pendragon.cs.purdue.edu.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=timeout ednsflags=ok optlist=ok,expire,cookie,subnet signed=timeout ednstcp=ok
(dig +ednsflags=0x80 +norec soa $zone @$server)
expect: status: NOERROR
expect: SOA record to be present
expect: OPT record to be present
expect: MBZ not to be present
expect: EDNS Version 0 in response
See RFC6891, 6.1.4 Flags
kp. @175.45.176.15 (ns1.kptc.kp.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok ednstcp=ok
kp. @175.45.176.16 (ns2.kptc.kp.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok signed=ok ednstcp=ok
lb. @193.188.128.14 (zeina.aub.edu.lb.): dns=ok edns=ok edns1=timeout edns@512=ok ednsopt=ok edns1opt=timeout do=ok ednsflags=timeout optlist=ok,expire,cookie,subnet signed=ok,yes ednstcp=ok
training. @2001:dcd:4::7 (demand.delta.aridns.net.au.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=timeout optlist=ok,nsid,expire signed=ok,yes ednstcp=ok
xn--fiqs8s. @66.198.183.66 (n.dns.cn.): dns=timeout edns=ok edns1=timeout edns@512=ok ednsopt=timeout edns1opt=ok do=ok ednsflags=timeout optlist=ok signed=ok,yes ednstcp=ok
xn--fiqz9s. @66.198.183.66 (n.dns.cn.): dns=ok edns=timeout edns1=timeout edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=timeout optlist=timeout signed=ok,yes ednstcp=ok
(dig +norec +edns +dnssec +bufsize=512 +noad +vc dnskey -q $zone @$server)
af. @2a03:dd40:3::111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=refused
allfinanz. @2a04:2b00:13ee::75 (c.nic.allfinanz.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
art. @2a04:2b00:13ee::49 (c.nic.art.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
best. @2a04:2b00:13ee::109 (c.nic.best.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
cam. @2a04:2b00:13ee::77 (c.nic.cam.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
deloitte. @2a04:2b00:13ee::80 (c.nic.deloitte.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
design. @2a04:2b00:13ee::59 (c.nic.design.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
dhl. @2a04:2b00:13ee::82 (c.nic.dhl.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
fo. @2a04:2b00:13ee::27 (c.nic.fo.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
forum. @2a04:2b00:13ee::65 (c.nic.forum.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
icu. @2a04:2b00:13ee::108 (c.nic.icu.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
kn. @2a03:dd40:3::111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok ednstcp=refused
mini. @2a04:2b00:13ee::95 (c.nic.mini.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
ms. @185.17.236.111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok ednstcp=refused
ms. @2a03:dd40:3::111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok ednstcp=refused
ooo. @2a04:2b00:13ee::33 (c.nic.ooo.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
pid. @2a04:2b00:13ee::47 (c.nic.pid.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
reit. @2a04:2b00:13ee::38 (c.nic.reit.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
rent. @2a04:2b00:13ee::63 (c.nic.rent.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
sb. @185.17.236.111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=refused
sb. @2a03:dd40:3::111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=refused
scb. @2001:c00:4618:3000::17 (b.nic.scb.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,expire signed=ok,yes ednstcp=timeout
stc. @2a04:2b00:13ee::29 (c.nic.stc.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
storage. @2a04:2b00:13ee::55 (c.nic.storage.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
tl. @185.17.236.111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=refused
tl. @2a03:dd40:3::111 (ns.coccaregistry.org.): dns=ok edns=ok edns1=ok edns@512=refused ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok signed=ok,yes ednstcp=refused
vg. @2a04:2b00:13ee::104 (c.nic.vg.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
xn--cg4bki. @2a04:2b00:13ee::113 (ns3.xn--cg4bki.centralnic-dns.com.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
xn--ngbc5azd. @37.209.194.3 (b.nic.xn--ngbc5azd.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire signed=ok,yes ednstcp=connection-refused
xn--ngbe9e0a. @2a04:2b00:13ee::22 (c.nic.xn--ngbe9e0a.): dns=ok edns=ok edns1=ok edns@512=ok ednsopt=ok edns1opt=ok do=ok ednsflags=ok optlist=ok,nsid,expire,cookie,subnet signed=ok,yes ednstcp=connection-refused
© 2019 Internet Systems Consortium