[Lista ArNOG] [lacnog] Escaneo de direcciones en redes IPv6 mediante el mapeo reverso del DNS

Fernando Gont fgont en si6networks.com
Jue Mar 2 03:32:53 ART 2017


On 03/01/2017 12:05 PM, Oscar A. Robles-Garay wrote:
> Fernando,
> 
> Ya en IPv4 escanear un /19 (por poner un ejemplo) através de la
> resolución inversa en el DNS requiere de buenas técnicas para escapar de
> algunos mecanismos de filtrado/rechazos en algunas redes, si bien tu
> idea hace factible un escaneo similar en IPv6, en la práctica no estaría
> enfrentando el mismo desafío?

No (pero ver mas abajo). Ejemplo:

ariel en maradona:/home/ariel/code/thc-ipv6# dnsrevenum6 -t 127.0.0.1
2001:67c:2e8:22::/48
Starting DNS reverse enumeration of 2001:67c:2e8:22:: on server 127.0.0.1
Found: 2001:67c:2e8:1::1 is gw.office.ripe.net.
Found: 2001:67c:2e8:1::c100:105 is vifa-1.ha-lb-virt-2.ripe.net.
Found: 2001:67c:2e8:1::c100:106 is vifa-1.tc5-lb-virt-2.ripe.net.
Found: 2001:67c:2e8:1::c100:107 is vifa-1.eqix3-lb-virt-2.ripe.net.
Found: 2001:67c:2e8:1::c100:10c is pademelon.ripe.net.
Found: 2001:67c:2e8:1::c100:10d is dingo.ripe.net.
Found: 2001:67c:2e8:1::c100:10e is millipede.ripe.net.
Found: 2001:67c:2e8:1::c100:114 is desman.ripe.net.
Found: 2001:67c:2e8:1::c100:115 is jaguar.ripe.net.
Found: 2001:67c:2e8:1::c100:118 is hoopoe.ripe.net.
Found: 2001:67c:2e8:1::c100:119 is buldog.ripe.net.
Found: 2001:67c:2e8:1::c100:11a is pumapard.ripe.net.
Found: 2001:67c:2e8:1::c100:11d is dropbear.ripe.net.
Found: 2001:67c:2e8:1::c100:11e is lineback.ripe.net.
Found: 2001:67c:2e8:1::c100:11f is moth.ripe.net.
Found: 2001:67c:2e8:1::c100:122 is pulpo.ripe.net.
Found: 2001:67c:2e8:1::c100:123 is iguana.ripe.net.
Found: 2001:67c:2e8:1::c100:128 is limousin.ripe.net.
Found: 2001:67c:2e8:1::c100:129 is koekkoek.ripe.net.
Found: 2001:67c:2e8:1::c100:12b is gii-web.ripe.net.
Found: 2001:67c:2e8:1::c100:12c is dnsmon-dev-plot.ripe.net.
Found: 2001:67c:2e8:1::c100:12f is int.db.ripe.net.
Found: 2001:67c:2e8:1::c100:139 is tigrina.ripe.net.
Found: 2001:67c:2e8:1::c100:13a is roach.ripe.net.
Found: 2001:67c:2e8:1::c100:13b is hound.ripe.net.
Found: 2001:67c:2e8:1::c100:13d is cassowary.ripe.net.
Found: 2001:67c:2e8:1::c100:13e is warthog.ripe.net.
Found: 2001:67c:2e8:1::c100:141 is mule.ripe.net.
Found: 2001:67c:2e8:1::c100:161 is int-sec-resolv1.ripe.net.
Found: 2001:67c:2e8:1::c100:168 is imap.ripe.net.
Found: 2001:67c:2e8:1::c100:169 is smtp.ripe.net.
Found: 2001:67c:2e8:1::c100:16e is rijn.ripe.net.
Found: 2001:67c:2e8:1::c100:170 is bison.ripe.net.
Found: 2001:67c:2e8:1::c100:180 is s250-ii-poe-1.ripe.net.
Found: 2001:67c:2e8:1::c100:192 is www-build.ripe.net.
Found: 2001:67c:2e8:1::c100:1c0 is nutria.ripe.net.
Found: 2001:67c:2e8:1::c100:1c1 is tucuxi.ripe.net.
Found: 2001:67c:2e8:1::c100:1c2 is costero.ripe.net.
Found: 2001:67c:2e8:1::c100:1c4 is anoa.ripe.net.
Found: 2001:67c:2e8:1::c100:1c5 is misc1.nl-ams.admindns.ripe.net.
Found: 2001:67c:2e8:1::c100:1c8 is bluebird.ripe.net.
Found: 2001:67c:2e8:1::c100:1c9 is blackbird.ripe.net.
Found: 2001:67c:2e8:1::c100:1ce is gibbon.ripe.net.
Found: 2001:67c:2e8:1::c100:1cf is lemming.ripe.net.
Found: 2001:67c:2e8:1::c100:1d1 is raven.ripe.net.
Found: 2001:67c:2e8:1::c100:1d2 is crow.ripe.net.
Found: 2001:67c:2e8:1::c100:1d4 is db-tools-1.ripe.net.
Found: 2001:67c:2e8:1::c100:1d7 is reindeer.ripe.net.
Found: 2001:67c:2e8:1::c100:1d8 is prep.db.ipv6.ripe.net.
Found: 2001:67c:2e8:1::c100:1d9 is dog.ripe.net.
Found: 2001:67c:2e8:1::c100:1dd is conduit1.ripe.net.
Found: 2001:67c:2e8:1::c100:1e2 is tortoise.ripe.net.
Found: 2001:67c:2e8:1::c100:1e4 is okapi.ripe.net.
Found: 2001:67c:2e8:1::c100:1e6 is puppy.ripe.net.
Found: 2001:67c:2e8:1::c100:1ec is cheetah.ripe.net.
Found: 2001:67c:2e8:1::c100:1ee is centos7.ripe.net.
Found: 2001:67c:2e8:1::c100:1ef is dbc-0.ripe.net.
Found: 2001:67c:2e8:1::c100:1f0 is kitten.ripe.net.
Found: 2001:67c:2e8:1::c100:1f1 is wapiti.ripe.net.
Found: 2001:67c:2e8:1::c100:1f2 is pig.ripe.net.
Found: 2001:67c:2e8:1::c100:1f4 is centos6.ripe.net.
Found: 2001:67c:2e8:1::c100:1f5 is boa.ripe.net.
Found: 2001:67c:2e8:1::c100:1f9 is cat.ripe.net.
Found: 2001:67c:2e8:1::c100:1fb is tmp1.ripe.net.
Found: 2001:67c:2e8:1::c100:1fc is tmp2.ripe.net.
Found: 2001:67c:2e8:1::c100:1fd is tmp3.ripe.net.
Found: 2001:67c:2e8:1::c100:1fe is tmp4.ripe.net.
Found: 2001:67c:2e8:1::c100:1717 is db-www3.ripe.net.
Found: 2001:67c:2e8:1::c100:1718 is db-www4.ripe.net.
Found: 2001:67c:2e8:2::1 is gw.rrc00-net.ripe.net.
Found: 2001:67c:2e8:2:ffff:0:4:28 is rrc00.ripe.net.
Found: 2001:67c:2e8:3::1 is gw.guestsrv.ripe.net.
Found: 2001:67c:2e8:3::c100:a2 is
nl-ams-as3333-2-test.anchors.atlas.ripe.net.
Found: 2001:67c:2e8:3::c100:a3 is tootsie.tols.org.
Found: 2001:67c:2e8:3::c100:ab is gulliver.ipv6.ripe.net.
Found: 2001:67c:2e8:3::c100:af is sghasemi.4�4.
Found: 2001:67c:2e8:3::c100:b0 is nl-ams-as3333-2.anchors.atlas.ripe.net.
Found: 2001:67c:2e8:3::c100:b4 is ringtail.ripe.net.
Found: 2001:67c:2e8:3::c100:b5 is cb.oprea.me.
Found: 2001:67c:2e8:3::c100:b6 is awesom-o.hpmc.net.
Found: 2001:67c:2e8:3::c100:be is rent-a-geek.ws.afnog.org.
Found: 2001:67c:2e8:4::a04:15 is rabbit.ripe.net.
Found: 2001:67c:2e8:5::1 is gw.ipv6.service.vrrp.ripe.net.
Found: 2001:67c:2e8:5::1:1 is gw.ipv6.service.eqix3rtr.ripe.net.
Found: 2001:67c:2e8:5::1:2 is gw.ipv6.service.telrtr.ripe.net.
Found: 2001:67c:2e8:5::c100:c6 is admin.authdns.ripe.net.
Found: 2001:67c:2e8:7::1 is gw.win.ripe.net.
Found: 2001:67c:2e8:7::c100:2c9 is r2d2.singel.ripe.net.
Found: 2001:67c:2e8:7::c100:2d3 is pike.singel.ripe.net.
Found: 2001:67c:2e8:7::c100:2d4 is sisko.singel.ripe.net.
Found: 2001:67c:2e8:7::c100:2d5 is crusher.singel.ripe.net.
Found: 2001:67c:2e8:7::c100:2dc is crusher-prepdev.singel.ripe.net.
Found: 2001:67c:2e8:7::c100:2dd is odo-prepdev.singel.ripe.net.
Found: 2001:67c:2e8:9::1 is gw.workstations.ripe.net.
Found: 2001:67c:2e8:9::c100:1426 is osx38.ripe.net.
Found: 2001:67c:2e8:9::c100:149b is xerox-2-east.ripe.net.
Found: 2001:67c:2e8:9::c100:149c is xerox-3-west.ripe.net.
Found: 2001:67c:2e8:9::c100:149d is xerox-3-east.ripe.net.
Found: 2001:67c:2e8:9::c100:149e is xerox-4-west.ripe.net.
Found: 2001:67c:2e8:9::c100:149f is xerox-4-east.ripe.net.
Found: 2001:67c:2e8:9::c100:14ad is hippo.ripe.net.
Found: 2001:67c:2e8:9::c100:14e5 is sslvpn-test.ipv6.ripe.net.
Found: 2001:67c:2e8:9::c100:14e6 is sslvpn.ipv6.ripe.net.
Found: 2001:67c:2e8:9::c100:14e7 is s258-sslvpn-1.ipv6.ripe.net.
Found: 2001:67c:2e8:9::c100:14e8 is tel-sslvpn-1.ipv6.ripe.net.
Found: 2001:67c:2e8:9::c100:14ec is mara.ripe.net.
Found: 2001:67c:2e8:9::c100:14f7 is sparrow.ripe.net.
Found: 2001:67c:2e8:9::c100:14fa is qagh.ripe.net.
Found: 2001:67c:2e8:9::c100:14fb is sehlat.ripe.net.
Found: 2001:67c:2e8:9::c100:14fc is targ.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fea8:9917 is osx16.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaa:c6a6 is osx43.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feab:16e is osx47.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feab:2d72 is osx63.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feab:55c0 is osx5.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feab:5c97 is osx42.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feac:be08 is osx30.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:56b is osx60.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:12d6 is osx21.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:3ea8 is osx17.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:42af is osx32.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:497f is osx19.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:49c4 is osx12.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:49dc is osx26.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4a06 is osx35.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4a61 is osx27.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4bd8 is osx6.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4c11 is osx23.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4d53 is osx20.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4d6c is osx13.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4d71 is osx31.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4df4 is osx29.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4e0f is osx24.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4e21 is osx25.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4e5f is osx14.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4ee7 is osx81.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:4f20 is osx33.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:6233 is osx7.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:6361 is osx37.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:fead:6362 is osx28.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feae:7708 is osx22.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:7b16 is osx45.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:7b38 is osx67.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:966a is osx15.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:98e9 is osx57.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:9956 is osx66.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:9a35 is osx52.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:9a82 is osx62.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:9ab5 is osx51.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:9ae0 is osx41.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:9ae2 is osx56.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:9ae3 is osx53.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:9b66 is osx76.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feaf:bbf2 is osx72.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feb0:3c13 is osx48.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feb0:3c15 is osx54.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feb0:3d81 is osx59.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feb0:3dc9 is osx75.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feb0:3dda is osx55.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feb0:3e2e is osx58.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feb0:3ec4 is osx68.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feb0:3f38 is osx69.ripe.net.
Found: 2001:67c:2e8:9:216:cbff:feb0:4094 is osx64.ripe.net.
Found: 2001:67c:2e8:9:21e:c2ff:fe0f:ea86 is osx2.ripe.net.
Found: 2001:67c:2e8:9:21e:c2ff:fe0f:ed59 is osx3.ripe.net.
Found: 2001:67c:2e8:9:222:41ff:fe3b:f328 is osx34.ripe.net.
Found: 2001:67c:2e8:9:223:32ff:fe97:1033 is osx44.ripe.net.
Found: 2001:67c:2e8:9:223:32ff:fe98:6904 is osx1.ripe.net.
Found: 2001:67c:2e8:9:223:32ff:fe98:691c is osx77.ripe.net.
Found: 2001:67c:2e8:9:225:ff:fed7:30ba is osx84.ripe.net.
Found: 2001:67c:2e8:9:225:4bff:febc:f1f0 is osx82.ripe.net.
Found: 2001:67c:2e8:9:129a:ddff:fe68:8917 is osx87.ripe.net.
Found: 2001:67c:2e8:9:129a:ddff:fe68:a562 is osx88.ripe.net.
Found: 2001:67c:2e8:9:129a:ddff:fe68:a6c5 is osx40.ripe.net.
Found: 2001:67c:2e8:9:129a:ddff:fe68:bd8d is osx89.ripe.net.
Found: 2001:67c:2e8:9:3615:9eff:fe28:f302 is osx85.ripe.net.
Found: 2001:67c:2e8:9:3e07:54ff:fe71:e623 is osx4.ripe.net.
Found: 2001:67c:2e8:9:3e07:54ff:fe76:4357 is osx39.ripe.net.
Found: 2001:67c:2e8:9:426c:8fff:fe02:a527 is osx80.ripe.net.
Found: 2001:67c:2e8:9:8579:abc:9ce8:304c is osx8.ripe.net.
Found: 2001:67c:2e8:9:aa20:66ff:fe45:daca is osx146.ripe.net.
Found: 2001:67c:2e8:9:aa20:a820:664b:1bf6 is osx18.ripe.net.
Found: 2001:67c:2e8:9:c62c:3ff:fe10:60ea is osx86.ripe.net.
Found: 2001:67c:2e8:9:ca2a:14ff:fe49:3f4f is osx61.ripe.net.
Found: 2001:67c:2e8:10::1 is gw.ipv6.authdns-sup.vrrp.ripe.net.
Found: 2001:67c:2e8:10::11 is gw.ipv6.authdns-sup.eqix3rtr.ripe.net.
Found: 2001:67c:2e8:10::12 is gw.ipv6.authdns-sup.telrtr.ripe.net.
Found: 2001:67c:2e8:11::1 is gw.newsrv.ripe.net.
Found: 2001:67c:2e8:11::123 is ntp1.ripe.net.
Found: 2001:67c:2e8:11::c100:120 is oncommand.ripe.net.
Found: 2001:67c:2e8:11::c100:d56 is stingray.prepdev.ripe.net.
Found: 2001:67c:2e8:11::c100:d66 is racer.prepdev.ripe.net.
Found: 2001:67c:2e8:11::c100:1302 is firefly.ripe.net.
Found: 2001:67c:2e8:11::c100:1303 is cf-gii.ripe.net.
Found: 2001:67c:2e8:11::c100:1304 is terrapin.ripe.net.
Found: 2001:67c:2e8:11::c100:1307 is
drac.nl-ams-as3333-rnd.anchors.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1308 is rosie.ipv6.ripe.net.
Found: 2001:67c:2e8:11::c100:1309 is emu.ripe.net.
Found: 2001:67c:2e8:11::c100:130c is oneill.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:130d is janus.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:130e is shen.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:130f is rodney.ipv6.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1311 is tsetse.ripe.net.
Found: 2001:67c:2e8:11::c100:1312 is beckett.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1315 is apnic.ripe.net.
Found: 2001:67c:2e8:11::c100:1316 is rrc-test.ripe.net.
Found: 2001:67c:2e8:11::c100:1317 is olingo.ripe.net.
Found: 2001:67c:2e8:11::c100:1319 is woolsey.ipv6.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:131a is woolsey-test.ipv6.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:131b is guanaco.ripe.net.
Found: 2001:67c:2e8:11::c100:131c is hengra.ripe.net.4�4.
Found: 2001:67c:2e8:11::c100:131d is kerodon.ripe.net.
Found: 2001:67c:2e8:11::c100:131e is carter.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:131f is secretary.ripe.net.
Found: 2001:67c:2e8:11::c100:1321 is chiggers.ripe.net.
Found: 2001:67c:2e8:11::c100:1322 is rosie-arch.ripe.net.
Found: 2001:67c:2e8:11::c100:1324 is ctr-ams00.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1325 is chouchou.ripe.net.
Found: 2001:67c:2e8:11::c100:1326 is dibbler.ripe.net.
Found: 2001:67c:2e8:11::c100:1329 is tamarin.ripe.net.
Found: 2001:67c:2e8:11::c100:132a is turtle.ripe.net.
Found: 2001:67c:2e8:11::c100:132c is ctr-ams12.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:132e is fieldant.ripe.net.
Found: 2001:67c:2e8:11::c100:132f is landry.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1330 is bates.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1331 is banks.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1332 is kagu.ripe.net.
Found: 2001:67c:2e8:11::c100:1333 is sora.ripe.net.
Found: 2001:67c:2e8:11::c100:1334 is kolya.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1335 is kanaan.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1336 is oberoth.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1337 is chickaree.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1338 is pipapipa.ripe.net.
Found: 2001:67c:2e8:11::c100:1339 is mouse.ripe.net.
Found: 2001:67c:2e8:11::c100:133a is ctr-ams01.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:133b is ctr-ams02.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:133c is ctr-ams03.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:133d is ctr-ams04.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:133e is ctr-ams05.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:133f is ctr-ams06.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1340 is openipmap-db-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1341 is marmot.ripe.net.
Found: 2001:67c:2e8:11::c100:1342 is ctr-ams13.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1343 is ctr-ams17.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1344 is openipmap-db-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1349 is mirror.kafka.ris.ripe.net.
Found: 2001:67c:2e8:11::c100:134a is openipmap-db2-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:134b is highgarden.ripe.net.
Found: 2001:67c:2e8:11::c100:134c is dragonstone.ripe.net.
Found: 2001:67c:2e8:11::c100:134e is ctr-ams14.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:134f is sheppard-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1350 is weir-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1351 is ronin-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1352 is zelenka-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1353 is atlas-ui-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1354 is ctr-ams15.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1355 is motmot.ripe.net.
Found: 2001:67c:2e8:11::c100:1356 is ctr-ams16.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1357 is oberoth-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1358 is kanaan-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1359 is ctr-ams11.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:135a is carter-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:135b is rodney-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:135c is woolsey-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:135d is teyla-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:135e is admin-dev-old.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:135f is shen-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1360 is stream-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1361 is huhu.ripe.net.
Found: 2001:67c:2e8:11::c100:1362 is soosoo.ripe.net.
Found: 2001:67c:2e8:11::c100:1363 is torres.ipv6.singel.ripe.net.
Found: 2001:67c:2e8:11::c100:1364 is admin-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1365 is ext-sec-resolv1.ripe.net.
Found: 2001:67c:2e8:11::c100:1366 is ext-sec-resolv2.ripe.net.
Found: 2001:67c:2e8:11::c100:1369 is beckett-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:136a is cormorant.ripe.net.
Found: 2001:67c:2e8:11::c100:136b is nl-ams-as3333.anchors.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:136c is
nl-ams-as3333-rnd.anchors.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:136d is
nl-ams-as3333-preprod.anchors.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:136e is tt999.ripe.net.
Found: 2001:67c:2e8:11::c100:136f is guru.ripe.net.
Found: 2001:67c:2e8:11::c100:1370 is yoda.ripe.net.
Found: 2001:67c:2e8:11::c100:1371 is molamola.ripe.net.
Found: 2001:67c:2e8:11::c100:1372 is mahimahi.ripe.net.
Found: 2001:67c:2e8:11::c100:1373 is ctr-ams07.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1374 is ctr-ams08.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1375 is ctr-ams09.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:1376 is ctr-ams18.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:137b is zonemaster-test.ripe.net.
Found: 2001:67c:2e8:11::c100:137c is zonemaster1.ripe.net.
Found: 2001:67c:2e8:11::c100:137d is atlas-db3.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:137e is atlas-db4.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13ab is openipmap-qdevice-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13ac is sheppard-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13ad is weir-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13ae is ronin-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13af is zelenka-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13b0 is oberoth-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13b1 is kanaan-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13b2 is carter-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13b3 is rodney-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13b4 is woolsey-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13b5 is oneill-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13b6 is janus-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13b7 is db-test-1.ripe.net.
Found: 2001:67c:2e8:11::c100:13b8 is stream-test.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13b9 is stingray.ripe.net.
Found: 2001:67c:2e8:11::c100:13ba is tadpole.ripe.net.
Found: 2001:67c:2e8:11::c100:13bb is pollywog.ripe.net.
Found: 2001:67c:2e8:11::c100:13bc is db-tra-1.ripe.net.
Found: 2001:67c:2e8:11::c100:13bd is roe.ripe.net.
Found: 2001:67c:2e8:11::c100:13be is ns1.nl-ams.admindns.ripe.net.
Found: 2001:67c:2e8:11::c100:13bf is ns1.nl-ams.testdns.ripe.net.
Found: 2001:67c:2e8:11::c100:13c0 is ns2.nl-ams.admindns.ripe.net.
Found: 2001:67c:2e8:11::c100:13c1 is skua.ripe.net.
Found: 2001:67c:2e8:11::c100:13c2 is dbc-beta.ripe.net.
Found: 2001:67c:2e8:11::c100:13c3 is trainvm01.ripe.net.
Found: 2001:67c:2e8:11::c100:13c4 is trainvm02.ripe.net.
Found: 2001:67c:2e8:11::c100:13c7 is stat-beta1.ripe.net.
Found: 2001:67c:2e8:11::c100:13c8 is clock0.ripe.net.
Found: 2001:67c:2e8:11::c100:13c9 is clock1.ripe.net.
Found: 2001:67c:2e8:11::c100:13ca is clock2.ripe.net.
Found: 2001:67c:2e8:11::c100:13cd is node1.kafka.ris.ripe.net.
Found: 2001:67c:2e8:11::c100:13ce is node2.kafka.ris.ripe.net.
Found: 2001:67c:2e8:11::c100:13cf is node3.kafka.ris.ripe.net.
Found: 2001:67c:2e8:11::c100:13d0 is node4.kafka.ris.ripe.net.
Found: 2001:67c:2e8:11::c100:13d1 is node5.kafka.ris.ripe.net.
Found: 2001:67c:2e8:11::c100:13d5 is state1.ris.ripe.net.
Found: 2001:67c:2e8:11::c100:13d6 is state2.ris.ripe.net.
Found: 2001:67c:2e8:11::c100:13d7 is stream-dev.ris.ripe.net.
Found: 2001:67c:2e8:11::c100:13d8 is worker1.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13d9 is worker2.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13da is worker1-test.ripe.net.
Found: 2001:67c:2e8:11::c100:13db is worker2-test.ripe.net.
Found: 2001:67c:2e8:11::c100:13dd is zomazoma.ripe.net.
Found: 2001:67c:2e8:11::c100:13de is zerazera.ripe.net.
Found: 2001:67c:2e8:11::c100:13df is atlas-ui-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13e0 is admin-dev.atlas.ripe.net.
Found: 2001:67c:2e8:11::c100:13e2 is zonemaster-db1.ripe.net.
[....]


Dicho eso, puede que alguien haya implementado algo para intentar
mitigar este vector.

(Dicen que) esto funcionaba también con el prefijo
2001:13c7:7002:4000::/32 de LACNIC. Sin embargo, un simple prueba
similar a la de arriba indicaría que algo cambió al respecto.

Por ej.,:

---- cut here ----
ariel en satellite:~$ dig -x 2001:13c7:7002:4000::11

; <<>> DiG 9.9.5-3ubuntu0.13-Ubuntu <<>> -x 2001:13c7:7002:4000::11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 57426
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4000
;; QUESTION SECTION:
;1.1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.2.0.0.7.7.c.3.1.1.0.0.2.ip6.arpa.
IN PTR

;; Query time: 181 msec
;; SERVER: 127.0.1.1#53(127.0.1.1)
;; WHEN: Thu Mar 02 03:03:06 ART 2017
;; MSG SIZE  rcvd: 101

---- cut here ----
ariel en satellite:~$ dig -x 2001:13c7:7002:4000::11

; <<>> DiG 9.9.5-3ubuntu0.13-Ubuntu <<>> -x 2001:13c7:7002:4000::11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: FORMERR, id: 28942
;; flags: qr rd ra; QUERY: 0, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; WARNING: EDNS query returned status FORMERR - retry with '+noedns'

;; Query time: 95 msec
;; SERVER: 127.0.1.1#53(127.0.1.1)
;; WHEN: Thu Mar 02 03:03:07 ART 2017
;; MSG SIZE  rcvd: 12


---- cut here ----
ariel en satellite:~$ dig -x 2001:13c7:7002:4000::11 +tcp

; <<>> DiG 9.9.5-3ubuntu0.13-Ubuntu <<>> -x 2001:13c7:7002:4000::11 +tcp
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 17686
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;1.1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.2.0.0.7.7.c.3.1.1.0.0.2.ip6.arpa.
IN PTR

;; Query time: 29 msec
;; SERVER: 127.0.1.1#53(127.0.1.1)
;; WHEN: Thu Mar 02 03:06:50 ART 2017
;; MSG SIZE  rcvd: 90
---- cut here ----


En *este* caso, pareceria que el admin hizo algo al respecto (prueba
rapida, de un minuto...sin investigar demasiado... ). Pero pareciera
problematico, ya que la direccion de arriba corresponde a un servidor
SMTP, y al no contestar los PTR correspondientes, se puede denegar el
"relaying"

En la practica, la tecnica funciona barbaro *salvo* cuando el admin
utiliza "wildcards" para el mapeo inverso -- lease, cuando toda
direccion IPV6 tiene un PTR correspondiente usualmente producto de un
wildcard.


Saludos,
-- 
Fernando Gont
SI6 Networks
e-mail: fgont en si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492






Más información sobre la lista de distribución Lista