nslookup always the same ip

[Guest]

[uffa14]

I was query the ip addreses for blogspot.it, using the Comodo Secure DNS i got this response:

> www.blogspot.com
Server:  ns1.recursive.dns.com
Address:  8.26.56.26

Risposta da un server non di fiducia:
Nome:    www.blogspot.com.lan
Address:  92.242.144.50

The response is always the same ip (92.242.144.50) for any domains...

Using other dns (p.e. google) i have different responses;

> www.blogspot.com
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Risposta da un server non di fiducia:
Nome:    blogger.l.google.com
Address:  74.125.79.191
Aliases:  www.blogspot.com

why???

[Radaghast]

For some reason, it would appear Comodo DNS is not working correctly from your end. The IP address 92.242.144.50 belongs to the landing page for failed domain lookups.

Code:

> www.blogspot.com
Server:  ns1.recursive.dns.com
Address:  8.26.56.26

Non-authoritative answer:
Name:    blogger.l.google.com
Address:  173.194.70.191
Aliases:  www.blogspot.com

> blogspot.it
Server:  ns1.recursive.dns.com
Address:  8.26.56.26

Non-authoritative answer:
Name:    blogspot.it
Address:  209.85.148.191

It's just a question of finding out why it's not working...

[uffa14]

Thank's for infos.
I have the same problem testing the comodo dns 8.26.56.26 from my office computer....any website i try to nslookup i have the same reply for example:

Code:

> www.comodo.com
Server:  ns1.recursive.dns.com
Address:  8.26.56.26

Risposta da un server non di fiducia:
Nome:    www.comodo.com.ric1.local
Address:  92.242.144.50

I was needing this reply to block with comodo firewall the blogspot  domain with all subdomains,  using a public dns (tryed google 8.8.8.8 the easyest to remember) nslookup give me three ip addreses
putting this address in blocked network zone it works.

But, if for a better results I wantto block just one subdomain (say badblog.blogspot.it) and i put this string in blocked network zone, all  the subdomain are blocked!!
why?

[Radaghast]

Thank's for infos.
I have the same problem testing the comodo dns 8.26.56.26 from my office computer....any website i try to nslookup i have the same reply for example:

Code:

> www.comodo.com
Server:  ns1.recursive.dns.com
Address:  8.26.56.26

Risposta da un server non di fiducia:
Nome:    www.comodo.com.ric1.local
Address:  92.242.144.50

Can you try 156.154.70.22 or 156.154.71.22. These are the older DNS server addresses offered by Comodo. The 8.26.56.26 and 8.20.247.20 servers are still in beta.

...But, if for a better results I wantto block just one subdomain (say badblog.blogspot.it) and i put this string in blocked network zone, all  the subdomain are blocked!!
why?

As far as I'm aware, blogspot uses virtual hosting, that is one IP address shared by many *.blogspot.com domains.

[uffa14]

Can you try 156.154.70.22 or 156.154.71.22. These are the older DNS server addresses offered by Comodo. The 8.26.56.26 and 8.20.247.20 servers are still in beta.

As far as I'm aware, blogspot uses virtual hosting, that is one IP address shared by many *.blogspot.com domains.

So you confirm blocking a bad.blogspot.com in comodo firewall will block any *.blogspot.com? it's bad for me but i suppose i can't do it better....

testing ti comodo config i have a new problem :-( i have removed all blocked zones  but  the blogspot sites are still not reachable.... if i turn off firewall i can reach them....

How long takes comodo to have new configuration active?

[getrich]

Actually there is a problem with the DNS servers at comodo. I had to remove them and use the ones from my ISP because most of the websites were showing as BLOCKED and the domain's ip were incorrect.

It worked fine for a few days .. but I don't like to be redirected to wrong ips and especially to show an warning that the domain is blocked when its actually fine.

[Radaghast]

So you confirm blocking a bad.blogspot.com in comodo firewall will block any *.blogspot.com? it's bad for me but i suppose i can't do it better....

Not quite. As I said in my previous post, from what I've seen blogspot uses virtual hosting. Simply put, it shares one IP address among many blogspot domains. So:

abc.blogspot.com - 209.85.148.132
def.blogspot.com - 209.85.148.132
ghi.blogspot.com - 209.85.148.132

Blocking 209.85.148.132 will block all of the aforementioned domains. Unfortunately, domain name blocking in CIS is currently not working as well as it might, so if you wanted to block individual domains, by name, you'd need to look at some other solution. Something like Acrylic DNS Proxy for example.

testing ti comodo config i have a new problem :-( i have removed all blocked zones  but  the blogspot sites are still not reachable.... if i turn off firewall i can reach them....

How long takes comodo to have new configuration active?

If you're seeing a delay between removing a block and being able to reconnect, try restarting the firewall.

[uffa14]

Unfortunately, domain name blocking in CIS is currently not working as well as it might

If you're seeing a delay between removing a block and being able to reconnect, try restarting the firewall.

Thanks!

Hope CIS will patch the domain name blocking as soon as possible!

i will take a look to acrylic

[uffa14]

OPS! 

In my trying  i leaved in a hosts record "1.1.1.1 *.blogspot.com"... now i understand why removing the blocking rule blogspot was not reachable....
sorry!!

[Tags:]