Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

autoddvpn下無法使用iTunes的問題 #18

Closed
GoogleCodeExporter opened this issue Mar 14, 2015 · 6 comments
Closed

autoddvpn下無法使用iTunes的問題 #18

GoogleCodeExporter opened this issue Mar 14, 2015 · 6 comments
Labels
auto-migrated GoogleDNS iTunes OpenDNS Priority-Medium Type-Defect

Comments

@GoogleCodeExporter
Copy link
Collaborator 

感谢 issue 17 的知道,终于弄好了,但是现在很多网站都不ok

twitter facebook都能上

但是itunes商店 autoddvpn似乎是解析成国内,然后 我这边 google 
dns解析的一个ip是被联通 屏蔽的。

所以,如何添加一些强制走vpn的网站,或者如何全部走vpn流��
�呢?

谢谢

Original issue reported on code.google.com by jno...@gmail.com on 8 Aug 2010 at 2:08
@GoogleCodeExporter
Copy link
Collaborator Author 

> google dns解析的一个ip是被联通 屏蔽的。

這句話是什麼意思呢?

autoddvpn在ddwrt設定當中,所有DNS解析都走8.8.8.8 and 8.8.4.4 
而經過VPN建立之後,連往這兩個IP也是透過VPN安全傳送的,理
論上只要VPN通了就無法干擾對google DNS的解析才對。

我想確定:

1) 你的ddwrt路由器是否設定DNS為8.8.8.8 and 8.8.4.4 
並且關閉「为DNS使用DNSMasq」這個選項。詳見 
http://code.google.com/p/autoddvpn/wiki/HOWTO

2)autoddvpn跑起來之後 traceroute 
8.8.8.8的輸出結果,是否第二hop就是你的VPN gateway?

3) 你發現哪一個網站無法正確DNS解析?

請盡量提供給我訊息。

Original comment by pahud...@gmail.com on 8 Aug 2010 at 2:13

@GoogleCodeExporter
Copy link
Collaborator Author 

iTunes会根据访问者的不同返回不同的IP,而通过google 
dns返回的IP是被联通屏蔽的。但openDNS返回的ip就没有问题
具体参看

http://www.google.com/search?hl=en&newwindow=1&client=safari&rls=en&q=google+dns
+itunes+墙&aq=f&aqi=&aql=&oq=&gs_rfai=

1)设置的 8.8.8.8 and 8.8.4.4 and 4.3.2.1(也是google 
dns),关闭了DNSMasq
2)我设置的 ×.x.x.0 返回的是 x.x.x.131 
前三位都是一样的,我按照 issue 17 的说明设置最后一位是 
0,现在也上的很正常,必须跟traceroute的一样么?
3)不是不正确解析,而是正确解析的ip,是一个被联通屏蔽��
�ip。墙太变态了,我这边是北京,可能算重灾区吧 :D

现在用OpenDNS中。

Original comment by jno...@gmail.com on 8 Aug 2010 at 2:32

@GoogleCodeExporter
Copy link
Collaborator Author 

我看了一下,貌似有人說聯通屏蔽了Akamai CDN 
http://twitbrowser.net/blog/?p=1863

不過理論上應該不會有影響才對,因為:

1) ddwrt透過VPN跟google DNS請求解析, google DNS返回Akamai節點
2) Akamai節點如果在國外的話,ddwrt同樣會走VPN跟國外節點溝通

除非Akamai節點在國內,這樣聯通屏蔽是有可能的,或者google 
DNS本身解析有問題,不然我實在看不出為什麼會連不上。

可能需要先知道iTunes使用哪一個域名才行。

Original comment by pahud...@gmail.com on 8 Aug 2010 at 2:55

@GoogleCodeExporter
Copy link
Collaborator Author 

我對這個issue很感興趣, 剛剛看到了這篇
http://qingbo.net/blog/post500-issue-of-mac-software-update.html

於是稍微研究了一下,對北京網通DNS查詢swcdn.apple.com

macbook:~ macbook$ nslookup swcdn.apple.com 202.106.196.115
Server:     202.106.196.115
Address:    202.106.196.115#53

Non-authoritative answer:
swcdn.apple.com canonical name = swcdn.apple.com.akadns.net.
swcdn.apple.com.akadns.net  canonical name = swcdn.apple.com.edgesuite.net.
swcdn.apple.com.edgesuite.net   canonical name = 
swcdn.apple.com.edgesuite.net.globalredir.akadns.net.
swcdn.apple.com.edgesuite.net.globalredir.akadns.net    canonical name = 
a950.cn.w.tl88.net.
Name:   a950.cn.w.tl88.net
Address: 60.210.17.19
Name:   a950.cn.w.tl88.net
Address: 60.210.17.18

注意,解析過程CNAME給tl88.net 了, 最後獲得的IP 60.210.17.xx 
是聯通的國內IP

繼續測試對google dns and opendns解析

macbook:~ macbook$ nslookup swcdn.apple.com 8.8.8.8
Server:     8.8.8.8
Address:    8.8.8.8#53

Non-authoritative answer:
swcdn.apple.com canonical name = swcdn.apple.com.akadns.net.
swcdn.apple.com.akadns.net  canonical name = swcdn.apple.com.edgesuite.net.
swcdn.apple.com.edgesuite.net   canonical name = 
swcdn.apple.com.edgesuite.net.globalredir.akadns.net.
swcdn.apple.com.edgesuite.net.globalredir.akadns.net    canonical name = 
a950.gi3.akamai.net.
Name:   a950.gi3.akamai.net
Address: 96.17.8.162
Name:   a950.gi3.akamai.net
Address: 96.17.8.146

macbook:~ macbook$ nslookup swcdn.apple.com 208.67.222.222
Server:     208.67.222.222
Address:    208.67.222.222#53

Non-authoritative answer:
swcdn.apple.com canonical name = swcdn.apple.com.akadns.net.
swcdn.apple.com.akadns.net  canonical name = swcdn.apple.com.edgesuite.net.
swcdn.apple.com.edgesuite.net   canonical name = 
swcdn.apple.com.edgesuite.net.globalredir.akadns.net.
swcdn.apple.com.edgesuite.net.globalredir.akadns.net    canonical name = 
a950.gi3.akamai.net.
Name:   a950.gi3.akamai.net
Address: 208.50.77.88
Name:   a950.gi3.akamai.net
Address: 208.50.77.94


都沒有很特別的CNAME記錄,而解析IP也在國外,實際traceroute發
現也會透過autoddvpn走VPN連往該節點。

因此我猜測:

1) 
你的iTunes可能在使用autoddvpn之前就已經有聯通的解析cache了,
這個cache可能已經存在iTunes裡面或OS裡面

2) 或許你可以試試看,在autoddvpn+google DNS撥上之後,清除local 
OS dns cache,甚至電腦重開機看看,也許就解決了。

當然如果你想繼續使用OpenDNS也是OK的。

Original comment by pahud...@gmail.com on 8 Aug 2010 at 3:15

@GoogleCodeExporter
Copy link
Collaborator Author 

使用cleanMyMac清除了所有缓存,重启,现在 swcdn.apple.com 
返回的是 63.150.131.164 ,美国ip,问题fix。

thank you

Original comment by jno...@gmail.com on 8 Aug 2010 at 4:47

@GoogleCodeExporter
Copy link
Collaborator Author 

太好了!

Original comment by pahud...@gmail.com on 8 Aug 2010 at 11:13

  • Changed title: autoddvpn下無法使用iTunes的問題
  • Changed state: Fixed
  • Added labels: iTunes, OpenDNS, GoogleDNS

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
auto-migrated GoogleDNS iTunes OpenDNS Priority-Medium Type-Defect
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@GoogleCodeExporter