[Help] force_dnscrypt_list.txt 对于某些域名没有效果
Closed this issue · 2 comments
jiajiaxd commented
在提交之前,请确认
- 我已经尝试执行test.sh并搜索过Issue和discussions和文档,但没有找到相关问题。
- 我正在使用最新的docker镜像版本(可以尝试
docker pull sliamb/paopaodns:latest后重新创建容器)。
test.sh脚本自检日志
alpine:~/paopaodns# docker exec paopaodns test.sh
*********************************************************************************
images build time : 2024-08-28 16:12:23 UTC
check for the latest version ,
go to https://github.com/kkkgo/PaoPaoDNS/discussions
-> test start `1733020806`
[INFO] ALL TEST PASS.✅
-> test end `1733020809`
*********************************************************************************debug.sh脚本自检日志
alpine:~/paopaodns# docker exec paopaodns debug.sh
### == debug.sh : docker exec -it paopaodns sh ==
-> debug start `1733020828`
[INFO] images build time : 2024-08-28 16:12:23 UTC
[OK]DATA_writeable
[OK]DATA_readable
[INFO] NETWORK
*********************************************************************************
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1000
inet 127.0.0.1/8 scope host lo
inet6 ::1/128 scope host
11: eth0@if12: <BROADCAST,MULTICAST,UP,LOWER_UP,M-DOWN> mtu 1500 qdisc noqueue state UP
inet 172.19.0.2/16 brd 172.19.255.255 scope global eth0
default via 172.19.0.1 dev eth0
172.19.0.0/16 dev eth0 scope link src 172.19.0.2
traceroute to 120.53.53.53 (120.53.53.53), 4 hops max, 46 byte packets
1 172.19.0.1 (172.19.0.1) 0.010 ms 0.008 ms 0.006 ms
2 192.168.0.1 (192.168.0.1) 0.007 ms 0.179 ms 0.181 ms
3 121.229.248.1 (121.229.248.1) 1.934 ms 2.738 ms 1.801 ms
4 180.109.226.153 (180.109.226.153) 1.804 ms * 2.297 ms
PING 223.5.5.5 (223.5.5.5): 56 data bytes
64 bytes from 223.5.5.5: seq=0 ttl=117 time=3.108 ms
--- 223.5.5.5 ping statistics ---
1 packets transmitted, 1 packets received, 0% packet loss
round-trip min/avg/max = 3.108/3.108/3.108 ms
PING 119.29.29.29 (119.29.29.29): 56 data bytes
64 bytes from 119.29.29.29: seq=0 ttl=51 time=9.600 ms
--- 119.29.29.29 ping statistics ---
1 packets transmitted, 1 packets received, 0% packet loss
round-trip min/avg/max = 9.600/9.600/9.600 ms
Server: 223.5.5.5
Address: 223.5.5.5#53
Non-authoritative answer:
www.taobao.com canonical name = www.taobao.com.danuoyi.tbcache.com.
Name: www.taobao.com.danuoyi.tbcache.com
Address: 58.215.158.201
Name: www.taobao.com.danuoyi.tbcache.com
Address: 58.215.158.200
Name: www.taobao.com.danuoyi.tbcache.com
Address: 240e:979:f05:3:3::3dd
Name: www.taobao.com.danuoyi.tbcache.com
Address: 240e:979:f05:3:3::3dc
Server: 119.29.29.29
Address: 119.29.29.29#53
Non-authoritative answer:
www.qq.com canonical name = ins-r23tsuuf.ias.tencent-cloud.net.
Name: ins-r23tsuuf.ias.tencent-cloud.net
Address: 101.91.42.232
Name: ins-r23tsuuf.ias.tencent-cloud.net
Address: 101.91.22.57
Name: ins-r23tsuuf.ias.tencent-cloud.net
Address: 240e:e1:a800:120::76
Name: ins-r23tsuuf.ias.tencent-cloud.net
Address: 240e:e1:a800:120::36
*********************************************************************************
[INFO] ENV
*********************************************************************************
====ENV TEST====
[OK]DATA_writeable-
[OK]DATA_readable-
MEM:100k 200k 200 16mb
prefPC:1
CORES:-1-
POWCORES:-1-
ulimit :-1048576-
FDLIM :-1-
TZ:-Asia/Shanghai-
UPDATE:-daily-
DNS_SERVERNAME:-PaoPaoDNS,blog.03k.org-
SERVER_IP:-none-
ETHIP:-172.19.0.2-
DNSPORT:-53-
SOCKS5:-no-
CNAUTO:-yes-
IPV6:-no-
CNFALL:-yes-
CUSTOM_FORWARD:-192.168.0.6:53-
AUTO_FORWARD:-yes-
AUTO_FORWARD_CHECK:-yes-
USE_MARK_DATA:-yes-
RULES_TTL:-0-
CUSTOM_FORWARD_TTL:-0-
SHUFFLE:-no-
EXPIRED_FLUSH:-yes-
CN_TRACKER:-yes-
USE_HOSTS:-no-
HTTP_FILE:-yes-
SAFEMODE:--
QUERY_TIME:-2000ms-
ADDINFO:-no-
PLATFORM:-Linux 3d5ad463b036 6.6.53-0-lts #1-Alpine SMP PREEMPT_DYNAMIC 2024-10-01 07:56:52 x86_64 Linux-
====ENV TEST====
mosdns kkkgo/mosdns:240822.1
total 10M
4.0K drwxrwxrwx 3 0 0 4.0K Dec 1 10:39 .
4.0K drwxr-xr-x 1 0 0 4.0K Dec 1 10:39 ..
248.0K -rw-r--r-- 1 0 0 247.9K Dec 1 10:39 Country-only-cn-private.mmdb
0 -rwxrwxrwx 1 0 0 0 Oct 1 20:16 custom_cn_mark.txt
4.0K -rwxrwxrwx 1 0 0 233 Dec 1 10:34 custom_env.ini
4.0K -rwxrwxrwx 1 0 0 416 Dec 1 10:39 custom_mod.yaml
4.0K drwxr-xr-x 2 0 0 4.0K Dec 1 10:39 dnscrypt-resolvers
4.0K -rw-r--r-- 1 0 0 3.0K Dec 1 10:39 dnscrypt.toml
4.0K -rwxrwxrwx 1 0 0 687 Dec 1 10:34 force_dnscrypt_list.txt
4.0K -rwxrwxrwx 1 0 0 346 Nov 22 14:57 force_forward_list.txt
4.0K -rwxrwxrwx 1 0 0 388 Nov 16 01:49 force_recurse_list.txt
1.3M -rw-r--r-- 1 0 0 1.3M Dec 1 10:39 global_mark.dat
12.0K -rw-r--r-- 1 0 0 10.0K Dec 1 10:39 mosdns.yaml
4.0K -rwxrwxrwx 1 0 0 1.4K Oct 1 23:39 ppgw.ini
8.0K -rw-r--r-- 1 0 0 5.7K Dec 1 10:39 redis.conf
8.3M -rwxrwxrwx 1 0 0 8.2M Dec 1 09:21 redis_dns_v2.rdb
20.0K -rwxrwxrwx 1 0 0 16.9K Nov 23 02:03 trackerslist.txt
52.0K -rw-r--r-- 1 0 0 50.9K Dec 1 10:39 unbound.conf
4.0K -rwxrwxrwx 1 0 0 289 Oct 1 20:16 unbound_custom.conf
*********************************************************************************
[INFO] PS
*********************************************************************************
PID USER TIME COMMAND
1 root 0:00 {init.sh} /bin/sh /usr/sbin/init.sh
23 root 0:00 crond
56 root 0:00 redis-server unixsocket:/tmp/redis.sock
195 root 0:00 dnscrypt-proxy -config /data/dnscrypt-resolvers/dnscrypt.toml
199 root 0:00 unbound -c /tmp/unbound_forward.conf -p
210 root 0:00 mosdns start -d /tmp -c /tmp/mosdns.yaml
231 root 0:00 unbound -c /tmp/unbound_raw.conf -p
232 root 0:00 {watch_list.sh} /bin/sh /usr/sbin/watch_list.sh
233 root 0:00 {data_update.sh} /bin/sh /usr/sbin/data_update.sh
235 root 0:00 sleep 184
244 root 0:00 tail -f /dev/null
269 root 0:00 inotifywait -e modify,delete /etc/unbound/named.cache /data/Country-only-cn-private.mmdb /data/force_recurse_list.txt /data/force_dnscrypt_list.txt /data/custom_env.ini /data/global_mark.dat /data/custom_cn_mark.txt /data/trackerslist.txt /data/force_forward_list.txt
390 root 0:00 {debug.sh} /bin/sh /usr/sbin/debug.sh
412 root 0:00 ps -ef
231 root 0:00 unbound -c /tmp/unbound_raw.conf -p
unbound OK.
199 root 0:00 unbound -c /tmp/unbound_forward.conf -p
unbound_forward OK.
*********************************************************************************
[INFO] TOP
*********************************************************************************
CPU: 0% usr 0% sys 0% nic 100% idle 0% io 0% irq 0% sirq
PID PPID USER STAT VSZ %VSZ CPU %CPU COMMAND
210 1 root S 1211m 169% 0 0% mosdns start -d /tmp -c /tmp/mosdn
195 1 root S 1210m 169% 0 0% dnscrypt-proxy -config /data/dnscr
56 1 root S 35696 5% 2 0% redis-server unixsocket:/tmp/redis
231 1 root S 12104 2% 0 0% unbound -c /tmp/unbound_raw.conf -
199 1 root S 11796 2% 0 0% unbound -c /tmp/unbound_forward.co
232 1 root S 1700 0% 1 0% {watch_list.sh} /bin/sh /usr/sbin/
233 1 root S 1648 0% 1 0% {data_update.sh} /bin/sh /usr/sbin
1 0 root S 1644 0% 0 0% {init.sh} /bin/sh /usr/sbin/init.s
390 0 root S 1640 0% 2 0% {debug.sh} /bin/sh /usr/sbin/debug
419 390 root R 1636 0% 0 0% top -n1
244 1 root S 1628 0% 2 0% tail -f /dev/null
420 390 root S 1624 0% 1 0% grep %
235 233 root S 1624 0% 1 0% sleep 184
269 232 root S 1084 0% 1 0% inotifywait -e modify,delete /etc/
23 1 root S 872 0% 1 0% crond
*********************************************************************************
[INFO] REDIS
*********************************************************************************
used_memory_human:11.16M
used_memory_rss_human:16.61M
used_memory_peak_human:11.16M
total_system_memory_human:714.95M
used_memory_lua_human:31.00K
used_memory_vm_total_human:63.00K
used_memory_scripts_human:181B
maxmemory_human:16.00M
32907
*********************************************************************************
[TEST] IP ROUTE
*********************************************************************************
CN IP URL:
121.229.248.10
-
121.229.248.10
--
CN RAW-IP URL:
121.229.248.10
------------------
Non-CN IP URL:
-
38.175.103.150
--
38.175.103.150
Non-CN RAW-IP URL:
121.229.248.10
-
121.229.248.10
--
121.229.248.10
---
121.229.248.10
------------------
IP INFO:
121.229.248.10
CN,Nanjing,Jiangsu
ASN4134/China Telecom
HTTP/1.1
Mozilla/5.0 Gecko/20100101 Firefox/120.0 https://github.com/kkkgo/PaoPaoDNS
Asia/Shanghai Time: 12/1/2024, 10:40:03 AM
[INFO] force_recurse_list
domain:whoami.ds.akahelp.net
domain:whoami.03k.org
MOSDNS WHOAMI :
MOSDNS akahelp: "ns" "121.229.248.10"
MOSDNS 03k: 121.229.248.10
UNBOUND WHOAMI:
UNBOUND akahelp: "ns" "121.229.248.10"
UNBOUND 03k: 121.229.248.10
*********************************************************************************
[TEST] HIJACK
*********************************************************************************
;; communications error to 9.8.7.5#53: timed out
;; no servers could be reached
;; communications error to 9.8.7.6#53: timed out
;; no servers could be reached
HIJACK 127.0.0.1 = 58.217.249.177
*********************************************************************************
[TEST] DIG-CN [taobao]
*********************************************************************************
MOSDNS CN:
www.taobao.com.danuoyi.tbcache.com.
58.215.158.201
58.215.158.200
UNBOUND CN:
www.taobao.com.danuoyi.tbcache.com.
58.215.158.200
58.215.158.201
[TEST] DIG-NOCN [youtube]
MOSDNS NOCN:
7.0.1.81
DNSCRYPT-UNBOUND NOCN:
youtube-ui.l.google.com.
142.251.12.93
142.251.12.190
DNSCRYPT NOCN:
youtube-ui.l.google.com.
142.251.46.174
142.251.46.206
DNSCRYPT-SOCKS5 NOCN:
;; communications error to 127.0.0.1#5303: connection refused
;; no servers could be reached
*********************************************************************************
CUSTOM_FORWARD TEST [youtube]:
7.0.1.81
CUSTOM_FORWARD TEST [taobao]:
7.0.1.167
*********************************************************************************
[TEST] DUAL CN [IPv6=YES will have aaaa,taobao]
*********************************************************************************
[TEST] DUAL NOCN [IPv6=YES will block aaaa,youtube]
[TEST] ONLY6 [IPv6=only6 will block aaaa if a ok]
checkipv6.synology.com : ip6.03k.org : 6.ipw.cn :
*********************************************************************************
[info] ALL TEST FINISH.
-> debug end `1733020838`问题描述和复现步骤
使用vi查看force_dnscrypt_list.txt
第一行,domain:bing.com已经被加入
但是在容器内部使用dig,仍然返回fakeip
alpine:~/paopaodns# docker exec paopaodns dig bing.com
; <<>> DiG 9.18.28 <<>> bing.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6206
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; MBZ: 0x0001, udp: 1232
; COOKIE: 44092fa7a97754b4 (echoed)
;; QUESTION SECTION:
;bing.com. IN A
;; ANSWER SECTION:
bing.com. 1 IN A 7.0.1.161
;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1) (UDP)
;; WHEN: Sun Dec 01 10:42:22 CST 2024
;; MSG SIZE rcvd: 73
nslookup也一样
alpine:~/paopaodns# docker exec paopaodns nslookup bing.com
Server: 127.0.0.1
Address: 127.0.0.1#53
Name: bing.com
Address: 7.0.1.161
kkkgo commented
force_forward_list 优先级比 force_dnscrypt_list高。
jiajiaxd commented
没注意到force_forward_list,打扰了😢