tcp - Malformed DNS Request Packet -


i've been working on project involves sending dns requests information (not actual domains) in questions (2 of them). i've been tracking packets wireshark.

here tcp dump of packet created.

00000000 00 02 01 00 00 02 00 00 00 00 00 00 01 32 03 65

00000010 6e 64 03 63 6f 6d 00 00 01 00 01 01 32 04 73 61

00000020 76 65 03 63 6f 6d 00 00 01 00 01

........ .....2.e

nd.com.. ....2.sa

ve.com.. ...

the i.d. , qdcount should 2, recursion desired, , domains shown correct. wireshark saying malformed dns packet. idea wrong packet?

ok, so:

  • if you're doing transport-layer networking yourself, code determine whether it's going on udp or tcp, specifying, when creating socket on send packet, whether it's udp or tcp socket;
  • tcp used if packet won't fit in maximum-sized udp packet;
  • if you're sending on tcp, need precede header, per section 4.2.2 "tcp usage" in rfc 1035.

"maximum-sized" bit vague. rfc 791, ipv4 specification, says, in section 3.1 "internet header format":

total length:  16 bits    total length length of datagram, measured in octets,   including internet header , data.  field allows length of   datagram 65,535 octets.  such long datagrams   impractical hosts , networks.  hosts must prepared   accept datagrams of 576 octets (whether arrive whole   or in fragments).  recommended hosts send datagrams   larger 576 octets if have assurance destination   prepared accept larger datagrams.    number 576 selected allow reasonable sized data block   transmitted in addition required header information.    example, size allows data block of 512 octets plus 64 header   octets fit in datagram.  maximal internet header 60   octets, , typical internet header 20 octets, allowing   margin headers of higher level protocols.

however, these days, old networking hardware impose maximum packet size limit low 576 bytes if not gone, , real-world "maximum packet size" ethernet packet size - total length of 1518 bytes, 14 bytes of ethernet header , 4 bytes of fcs, leaving 1500 bytes of payload. udp, typical ipv4 header length of 20 bytes , udp header length of 8 bytes, that's 1472 bytes of data, it's enough use tcp rather udp dns messages larger 1472 bytes (ip fragmentation , reassembly happen if hop in network route can't handle 1500-byte ipv4 packet; increase chances of packet not getting through, as, if 1 fragment gets through other doesn't, entire packet doesn't through).


Comments

Post a Comment

Popular posts from this blog

Magento/PHP - Get phones on all members in a customer group -

i working on custom magento extension. working around adminhtml part , i've created custom form there. here form code: <?php class vivasindustries_smsnotification_block_adminhtml_sms_sendmass_edit_form extends mage_adminhtml_block_widget_form { public function _preparelayout() { $extensionpath = mage::getmoduledir('js', 'vivasindustries_smsnotification'); $head = $this->getlayout()->getblock('head'); $head->addjs('jquery.js'); $head->addjs('vivas.js'); return parent::_preparelayout(); } protected function _prepareform() { $form = new varien_data_form(array( 'id' => 'edit_form', 'action' => $this->geturl('*/*/save', array('id' => $this->getrequest()->get...
Read more

php - Bypass Geo Redirect for specific directories -

i'm trying bypass redirect specific url within site. wondering if might able help. the code below code use, original urls replaces example.com i'd able access http://example.com/admin without redirect occuring. is there way this, , there way using own ip? function country_geo_redirect() { $country = getenv('http_geoip_country_code'); if ($country == "us" ) { wp_redirect("http://usa.example.com/"); exit; } else if ($country == "gb" ) { wp_redirect("http://uk.example.com/"); exit; } } add_action('init', 'country_geo_redirect'); you can bypass redirection code if server found ip address. if ip address == <my ip address> ' nothing here else country_georedirect() end if
Read more

php - .htaccess mod_rewrite for dynamic url which has domain names -

i want convert url ex:( example.com/link.php?url=facebook.com ) ( example.com/facebook.com.php ) how can using .htaccess. or there other process make job easier ? i tried adding script .htaccess file options +followsymlinks rewriteengine on rewriterule url-(.*)\.htm$ link.php?url=$1 but converting url adding "url-" ( example.com/url-facebook.com.php ) i want remove "url-" , want make ( example.com/facebook.com.php ) rewriteengine on rewritecond %{the_request} ^get.*link\.php\?url\= [nc] rewritecond %{request_uri} !/system/.* [nc] rewriterule (.*?)link\.php\?url\=/*(.*) /$1$2 [r=301,ne,l] not sure how above work edit of used use remove index.php url
Read more