INTERNET outages: DOD routing tables (11.11.18.*). Why are they shifting DNS resolution around today?
(media.greatawakening.win)
You're viewing a single comment thread. View all comments, or full comment thread.
Comments (7)
sorted by:
Apparently it is more than DNS. Routing tables have been changed so DNS servers on the Internet are unable to get to Facebook's authoritative DNS servers which are trusted by all other DNS servers to provide the correct name/IP address resolution.
But apparently you can't even get to Facebook with an IP address. This is more than a DNS issue.
https://twitter.com/briankrebs/status/1445081561536339970
Who would have ability to do that?
It is actually quite easy to do. ISPs and companies that advertise their own IP space to the Internet routers rather than rely on ISPs would have the ability to do it. Large companies advertise their own Internet IP space to the Internet, like mine. The Internet routers are actually quite trusting when it comes to believing routes that are learned from other Internet routers. It basically works like this, a router will announce (using the Border Gateway Protocol, BGP, on the Internet) if you want to get to X.X.X.X/X address space, send your traffic to me. The Internet routers, using BGP to communicate with each other, will figure out the best way to get traffic from Point A to Point B. Sometimes Internet routers have policies which limit which routes they learn from others, kind of like guardrails from being too trusting. Now the issue is the length of time Facebook and its entities have been offline. This is fairly unheard of. My best guess is Facebook took itself offline; stopped advertising its own address space.
Even normies who watched the social network know the downtime is a huge deal. That's pretty cray cray.
This is normal. Many web servers are configured to reject all requests which don't have a 'Host:' header, or where the header is wrong. This would happen when manually typing in an IP address