dnsdiag/README.md

[![Build Status](https://travis-ci.org/farrokhi/dnsdiag.svg)](https://travis-ci.org/farrokhi/dnsdiag)

DNS Diagnostics and Performance Measurement Tools
==================================================

Ever been wondering if your ISP is hijacking your DNS traffic? Ever observed any
misbehavior with your DNS responses? Ever been redirected to wrong address and
suspected something is wrong with your DNS? Here we have a set of tools to
perform basic audits on your DNS requests and responses to make sure your DNS is
working as you expect.

You can measure the response time of any given DNS server for arbitrary requests
using `dnsping`. Just like traditional ping utility, it gives you similar
functionality for DNS requests.

You can also trace the path your DNS request takes to destination to make sure
it is not being redirected or hijacked. This can be done by comparing different
DNS queries being sent to the same DNS server using `dnstraceroute` and observe
if there is any difference between the path.

`dnseval` evaluates multiple DNS resolvers and helps you choose the best DNS
server for your network. While it is highly recommended to use your own DNS
resolver and never trust any third-party DNS server, but in case you need to
choose the best DNS forwarder for your network, `dnseval` lets you compare
different DNS servers from performance (latency) and reliability (loss) point
of view.

# prerequisites
This script requires python3 as well as latest
[dnspython](http://www.dnspython.org/) and
[cymruwhois](https://pythonhosted.org/cymruwhois/). Please note that
"dnstraceroute" requires a modified version of dnspython module. All required
third-party modules are included as GIT submodules. You just need to run `git
submodule update --init` and project directory to pull the required code.

# dnsping
dnsping pings a DNS resolver by sending an arbitrary DNS query for given number
of times:
```
% ./dnsping.py -c 3 -s 8.8.8.8 -t MX wikipedia.org
dnsping.py DNS: 8.8.8.8:53, hostname: wikipedia.org, rdatatype: MX
101 bytes from 8.8.8.8: seq=0   time=262.896 ms
101 bytes from 8.8.8.8: seq=1   time=305.608 ms
101 bytes from 8.8.8.8: seq=2   time=307.221 ms

--- 8.8.8.8 dnsping statistics ---
3 requests transmitted, 3 responses received,   0% lost
min=262.896 ms, avg=291.908 ms, max=307.221 ms, stddev=25.138 ms
```
This script calculates minimum, maximum and average response time as well as
jitter (stddev)

# dnstraceroute
dnstraceroute is a traceroute utility to figure out the path that your DNS
request is passing through to get to its destination. You may want to compare
it to your actual network traceroute and make sure your DNS traffic is not
routed to any unwanted path.

```
% ./dnstraceroute.py -s 4.2.2.1 yahoo.com
 dnstraceroute.py 4.2.2.1: hostname=yahoo.com rdatatype=A
 1       192.168.199.57 (192.168.199.57)  47 ms
 2       192.168.198.21 (192.168.198.21)  21 ms
 3       192.168.169.169 (192.168.169.169)  27 ms
 4       192.168.168.137 (192.168.168.137)  28 ms
 5       so-5-0-0.franco71.fra.seabone.net (89.221.34.6)  23 ms
 6       xe-5-3-1.fra44.ip4.gtt.net (89.149.129.185)  62 ms
 7       *  1126 ms
 8       ae-1-60.edge5.Frankfurt1.Level3.net (4.69.154.9)  62 ms
 9       ae-1-60.edge5.Frankfurt1.Level3.net (4.69.154.9)  12 ms
 10      a.resolvers.level3.net (4.2.2.1)  171 ms
```

# dnseval
dnseval is a bulk ping utility that sends an arbitrary DNS query to a give list
of DNS servers. This script is meant for comparing response time of multiple
DNS servers at once:
```
% ./dnseval.py wikipedia.org
server             avg(ms)     min(ms)     max(ms)     stddev(ms)  lost(%)
--------------------------------------------------------------------------
4.2.2.1            151.067     131.270     221.742     28.643      %10
4.2.2.2            142.175     132.921     178.133     13.348      %0
64.6.64.6          133.047     109.145     162.938     20.609      %0
64.6.65.6          377.270     97.669      661.471     172.717     %0
8.8.4.4            389.048     294.581     511.134     67.953      %0
8.8.8.8            0.000       0.000       0.000       0.000       %100
208.67.222.222     179.068     135.975     258.582     50.681      %0
208.67.220.220     137.817     135.822     140.113     1.504       %0
```

### Credits

- [@rthalley](https://github.com/rthalley) for invaluable [dnspython](https://github.com/rthalley/dnspython) library
- [@JustinAzoff](https://github.com/JustinAzoff) for [python-cymruwhois](https://github.com/JustinAzoff/python-cymruwhois) library
- [@bortzmeyer](https://github.com/bortzmeyer) for his feedback and patches
add build status from travis 2016-04-30 16:05:37 +04:30			`[![Build Status](https://travis-ci.org/farrokhi/dnsdiag.svg)](https://travis-ci.org/farrokhi/dnsdiag)`

Initial commit 2016-02-03 11:01:11 +03:30			`DNS Diagnostics and Performance Measurement Tools`
Update README.md 2016-04-08 12:12:09 +04:30			`==================================================`
update README 2016-02-03 22:48:40 +03:30
trivial fixes 2016-04-09 11:45:22 +04:30			`Ever been wondering if your ISP is hijacking your DNS traffic? Ever observed any`
improve README 2016-04-09 11:44:14 +04:30			`misbehavior with your DNS responses? Ever been redirected to wrong address and`
			`suspected something is wrong with your DNS? Here we have a set of tools to`
			`perform basic audits on your DNS requests and responses to make sure your DNS is`
			`working as you expect.`
Update README.md 2016-04-08 12:12:09 +04:30
improve README to explain module requirement 2016-04-12 12:16:24 +04:30			`You can measure the response time of any given DNS server for arbitrary requests`
			using `dnsping`. Just like traditional ping utility, it gives you similar
			`functionality for DNS requests.`
Update README.md 2016-04-08 12:12:09 +04:30
fixed line-wrapping in text files 2016-04-08 12:28:12 +04:30			`You can also trace the path your DNS request takes to destination to make sure`
			`it is not being redirected or hijacked. This can be done by comparing different`
			DNS queries being sent to the same DNS server using `dnstraceroute` and observe
			`if there is any difference between the path.`
Update README.md 2016-04-08 12:12:09 +04:30
dnsperf -> dnseval 2016-04-09 11:40:08 +04:30			`dnseval` evaluates multiple DNS resolvers and helps you choose the best DNS
			`server for your network. While it is highly recommended to use your own DNS`
			`resolver and never trust any third-party DNS server, but in case you need to`
			choose the best DNS forwarder for your network, `dnseval` lets you compare
			`different DNS servers from performance (latency) and reliability (loss) point`
			`of view.`
update README and TODO - add basic introduction to README - add pending tasks to TODO 2016-04-08 10:29:49 +04:30
proper ctrl+c handling 2016-02-06 09:36:01 +03:30			`# prerequisites`
fixed line-wrapping in text files 2016-04-08 12:28:12 +04:30			`This script requires python3 as well as latest`
improve README to explain module requirement 2016-04-12 12:16:24 +04:30			`[dnspython](http://www.dnspython.org/) and`
			`[cymruwhois](https://pythonhosted.org/cymruwhois/). Please note that`
			`"dnstraceroute" requires a modified version of dnspython module. All required`
			third-party modules are included as GIT submodules. You just need to run `git
			submodule update --init` and project directory to pull the required code.
update README 2016-02-03 22:48:40 +03:30
add examples 2016-02-06 11:55:38 +03:30			`# dnsping`
fixed line-wrapping in text files 2016-04-08 12:28:12 +04:30			`dnsping pings a DNS resolver by sending an arbitrary DNS query for given number`
			`of times:`
add examples 2016-02-06 11:55:38 +03:30			```
			`% ./dnsping.py -c 3 -s 8.8.8.8 -t MX wikipedia.org`
update README to reflect new dnsping output 2016-04-12 13:06:55 +04:30			`dnsping.py DNS: 8.8.8.8:53, hostname: wikipedia.org, rdatatype: MX`
			`101 bytes from 8.8.8.8: seq=0 time=262.896 ms`
			`101 bytes from 8.8.8.8: seq=1 time=305.608 ms`
			`101 bytes from 8.8.8.8: seq=2 time=307.221 ms`
add examples 2016-02-06 11:55:38 +03:30
			`--- 8.8.8.8 dnsping statistics ---`
			`3 requests transmitted, 3 responses received, 0% lost`
update README to reflect new dnsping output 2016-04-12 13:06:55 +04:30			`min=262.896 ms, avg=291.908 ms, max=307.221 ms, stddev=25.138 ms`
add examples 2016-02-06 11:55:38 +03:30			```
fixed line-wrapping in text files 2016-04-08 12:28:12 +04:30			`This script calculates minimum, maximum and average response time as well as`
			`jitter (stddev)`
add examples 2016-02-06 11:55:38 +03:30
add initial version of dnstraceroute utility - also updated README and TODO - made a symlink to dns directory under dnspython module directory (I could not figure out an smarter way to do this) 2016-04-07 14:23:28 +04:30			`# dnstraceroute`
fixed line-wrapping in text files 2016-04-08 12:28:12 +04:30			`dnstraceroute is a traceroute utility to figure out the path that your DNS`
			`request is passing through to get to its destination. You may want to compare`
			`it to your actual network traceroute and make sure your DNS traffic is not`
			`routed to any unwanted path.`
add initial version of dnstraceroute utility - also updated README and TODO - made a symlink to dns directory under dnspython module directory (I could not figure out an smarter way to do this) 2016-04-07 14:23:28 +04:30
			```
			`% ./dnstraceroute.py -s 4.2.2.1 yahoo.com`
			`dnstraceroute.py 4.2.2.1: hostname=yahoo.com rdatatype=A`
			`1 192.168.199.57 (192.168.199.57) 47 ms`
			`2 192.168.198.21 (192.168.198.21) 21 ms`
			`3 192.168.169.169 (192.168.169.169) 27 ms`
			`4 192.168.168.137 (192.168.168.137) 28 ms`
			`5 so-5-0-0.franco71.fra.seabone.net (89.221.34.6) 23 ms`
			`6 xe-5-3-1.fra44.ip4.gtt.net (89.149.129.185) 62 ms`
			`7 * 1126 ms`
			`8 ae-1-60.edge5.Frankfurt1.Level3.net (4.69.154.9) 62 ms`
			`9 ae-1-60.edge5.Frankfurt1.Level3.net (4.69.154.9) 12 ms`
			`10 a.resolvers.level3.net (4.2.2.1) 171 ms`
			```

dnsperf -> dnseval 2016-04-09 11:40:08 +04:30			`# dnseval`
			`dnseval is a bulk ping utility that sends an arbitrary DNS query to a give list`
			`of DNS servers. This script is meant for comparing response time of multiple`
			`DNS servers at once:`
			```
			`% ./dnseval.py wikipedia.org`
			`server avg(ms) min(ms) max(ms) stddev(ms) lost(%)`
			`--------------------------------------------------------------------------`
			`4.2.2.1 151.067 131.270 221.742 28.643 %10`
			`4.2.2.2 142.175 132.921 178.133 13.348 %0`
			`64.6.64.6 133.047 109.145 162.938 20.609 %0`
			`64.6.65.6 377.270 97.669 661.471 172.717 %0`
			`8.8.4.4 389.048 294.581 511.134 67.953 %0`
			`8.8.8.8 0.000 0.000 0.000 0.000 %100`
			`208.67.222.222 179.068 135.975 258.582 50.681 %0`
			`208.67.220.220 137.817 135.822 140.113 1.504 %0`
			```
add Credits section 2016-04-10 20:04:54 +04:30
			`### Credits`

fix links 2016-04-10 20:09:21 +04:30			`- [@rthalley](https://github.com/rthalley) for invaluable [dnspython](https://github.com/rthalley/dnspython) library`
			`- [@JustinAzoff](https://github.com/JustinAzoff) for [python-cymruwhois](https://github.com/JustinAzoff/python-cymruwhois) library`
			`- [@bortzmeyer](https://github.com/bortzmeyer) for his feedback and patches`