挖掘响应中的所有标志是什么?

tag-icon tag-icon domain-name-system dig
挖掘响应中的所有标志是什么?

dig回应在评论部分返回标志:

$ dig example.com +noall +comments

; <<>> DiG 9.8.3-P1 <<>> example.com +noall +comments
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29045
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

最后一行有标志:

flags: qr rd ra;

dig 有哪些可能的标志?

以下是我目前找到的列表:

答案1

我在用RFC 1035作为来源,从那里保持顺序,无论您是否已经在问题中提到它。

  • QR 指定此消息是查询 (0),还是响应 (1)
  • 操作码四位字段,仅有效值:0,1,2
  • AA权威解答
  • TC TrunCation(由于长度大于传输通道允许的长度而被截断)
  • 需要 RD 递归
  • RA 递归可用
  • Z 保留供将来使用。必须为零

RFC 4035

  • CD(检查已禁用):表示安全感知解析器应禁用签名验证(即不检查 DNSSEC 记录)
  • AD(真实数据):表示解析器认为响应是真实的 - 即经过 DNSSEC 验证

答案2

从:http://www.perdisci.com/useful-links/dig-info

DIG response header:

Flags:
AA = Authoritative Answer

TC = Truncation

RD = Recursion Desired (set in a query and copied into the response if recursion is supported)

RA = Recursion Available (if set, denotes recursive query support is available)

AD = Authenticated Data (for DNSSEC only; indicates that the data was authenticated)

CD = Checking Disabled (DNSSEC only; disables checking at the receiving server)

Response code:

0 = NOERR, no error

1 = FORMERR, format error (unable to understand the query)

2 = SERVFAIL, name server problem

3= NXDOMAIN, domain name does not exist

4 = NOTIMPL, not implemented

5 = REFUSED (e.g., refused zone transfer requests)

答案3

更多信息请阅读:

RFC1035 - 4.1.1. 标头部分格式 (https://www.rfc-editor.org/rfc/rfc1035

RFC6895 - 2. DNS 查询/响应标头 (https://www.rfc-editor.org/rfc/rfc6895

相关内容