初步判断是被vps服务商做了手脚,因为dnsmasq监听其他端口可以工作,应该是把53给封了。但是外部端口扫描能坚持到53是开发的,什么原因呢?
用53dig:
; <<>> DiG 9.5.1 <<>> @
x .x.x.x g.cn
; (1 server found)
;; global options: printcmd
;; connection timed out; no servers could be reached
用非53:
; <<>> DiG 9.5.1 <<>> @
x .x.x.x -p 12345 g.cn
; (1 server found)
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 498
;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONA
;; QUESTION SECTION:
;g.cn. IN A
;; ANSWER SECTION:
g.cn. 300 IN A 203.208.46.211
g.cn. 300 IN A 203.208.46.212
g.cn. 300 IN A 203.208.46.209
g.cn. 300 IN A 203.208.46.210
g.cn. 300 IN A 203.208.46.208
;; Query time: 305 msec
;; SERVER: 117.78.17.156#12345(117.78.17.156)
;; WHEN: Mon Nov 10 12:39:18 2014
;; MSG SIZE rcvd: 102