DNS/TCP/nhk.or.jpについて、ここに記述してください。

$ dnsq a www3.nhk.or.jp a.dns.jp 

1 www3.nhk.or.jp:
100 bytes, 1+0+2+2 records, response, noerror
query: 1 www3.nhk.or.jp
authority: nhk.or.jp 86400 NS ns.nhk.or.jp
authority: nhk.or.jp 86400 NS ns10.nhk.or.jp
additional: ns.nhk.or.jp 86400 A 133.127.64.240
additional: ns10.nhk.or.jp 86400 A 133.127.255.71

$ dnsq a www3.nhk.or.jp ns.nhk.or.jp 

1 www3.nhk.or.jp:
74 bytes, 1+1+0+0 records, response, authoritative, noerror
query: 1 www3.nhk.or.jp
answer: www3.nhk.or.jp 600 CNAME www3.nhk.or.jp.edgesuite.net

1. www3.nhk.or.jp.edgesuite.net

TCPで返事が返ってこなかったのだが、改めて確認してみた。 -- ToshinoriMaeno 2014-09-17 23:06:20

$ dig -t a +tcp www3.nhk.or.jp.edgesuite.net. 

; <<>> DiG 9.9.5-3-Ubuntu <<>> -t a +tcp www3.nhk.or.jp.edgesuite.net.
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 52208
;; flags: qr rd ra; QUERY: 1, ANSWER: 7, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;www3.nhk.or.jp.edgesuite.net.  IN      A

;; ANSWER SECTION:
www3.nhk.or.jp.edgesuite.net. 21200 IN  CNAME   a1702.g1.akamai.net.
a1702.g1.akamai.net.    20      IN      A       72.246.188.98
a1702.g1.akamai.net.    20      IN      A       72.246.188.136
a1702.g1.akamai.net.    20      IN      A       72.246.188.96
a1702.g1.akamai.net.    20      IN      A       72.246.188.89
a1702.g1.akamai.net.    20      IN      A       72.246.188.121
a1702.g1.akamai.net.    20      IN      A       72.246.188.154

;; Query time: 37 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Thu Sep 18 08:07:18 JST 2014
;; MSG SIZE  rcvd: 183

$ dig -t a +tcp a1702.g1.akamai.net. 

; <<>> DiG 9.9.5-3-Ubuntu <<>> -t a +tcp a1702.g1.akamai.net.
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 37330
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;a1702.g1.akamai.net.           IN      A

;; ANSWER SECTION:
a1702.g1.akamai.net.    20      IN      A       72.246.188.155
a1702.g1.akamai.net.    20      IN      A       72.246.188.88

;; Query time: 37 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Thu Sep 18 08:08:05 JST 2014
;; MSG SIZE  rcvd: 80

2. upstream tcp

unbound.conf で TCP を使うようにしてみる。 -- ToshinoriMaeno 2014-09-17 23:08:43

返事がない。

$ dig -t a +tcp www3.nhk.or.jp.edgesuite.net. 

; <<>> DiG 9.9.5-3-Ubuntu <<>> -t a +tcp www3.nhk.or.jp.edgesuite.net.
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 588
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;www3.nhk.or.jp.edgesuite.net.  IN      A

;; Query time: 2582 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Thu Sep 18 08:13:58 JST 2014
;; MSG SIZE  rcvd: 57

ns.nhk.or.jp は返答があるので、akamai 側の問題のようだ。

$ dig -t a +tcp www3.nhk.or.jp @ns.nhk.or.jp 

; <<>> DiG 9.9.5-3-Ubuntu <<>> -t a +tcp www3.nhk.or.jp @ns.nhk.or.jp
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54258
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;www3.nhk.or.jp.                        IN      A

;; ANSWER SECTION:
www3.nhk.or.jp.         600     IN      CNAME   www3.nhk.or.jp.edgesuite.net.

;; Query time: 39 msec
;; SERVER: 133.127.64.240#53(133.127.64.240)
;; WHEN: Thu Sep 18 08:15:40 JST 2014
;; MSG SIZE  rcvd: 85