In order to shape traffic cheaply, I would like to know the address range of a particular domain, say google.com
.
-
First option is to do a reverse dns lookup for a range of ips that are close to the ones from
dig google.com +short
. The problems are obvious: it's easy to miss something. Moreover, isn't scanning like that a bit rude? -
Second option is to monitor for DNS queries that come back from the name servers. The ips of the name servers are unlikely to change which is good. However, I have no idea how to teach my router (Mikrotik RB951G-2HnD) to extract ips from dns responses.
-
Finally, it turned out that in some cases (namely,
google.com
andvk.com
) subnet ranges are stored in theTXT
record type. A single query can be made to obtain those:dig txt google.com +short
However, not everybody does that. And even if they did, I would have to manually reconfigure the router with an additional ip range if that ever changed.
Best Answer
You could try using whois on one of the returned IP addresses, at least for »big players« like Google, who have their own server farms and thus their own address ranges registered (not using some third party's space).
Thus the range you want to know would be 173.194.0.0/16.