多线BGP鉴定
有公网ip的机器上
root@PORT:~# traceroute -A www.dyxnet.com traceroute to www.dyxnet.com (202.134.64.17), 30 hops max, 60 byte packets 1 210.22.22.129 (210.22.22.129) [AS17623] 1.593 ms 1.727 ms 1.818 ms 2 120.80.156.93 (120.80.156.93) [AS17623] 4.298 ms 120.80.167.165 (120.80.167.165) [AS17623] 4.537 ms 120.80.156.89 (120.80.156.89) [AS17623] 3.693 ms 3 112.96.0.81 (112.96.0.81) [AS17816/AS4837] 5.112 ms 120.86.0.41 (120.86.0.41) [AS17816] 9.900 ms 112.96.0.81 (112.96.0.81) [AS17816/AS4837] 7.899 ms 4 219.158.19.66 (219.158.19.66) [AS4837] 9.807 ms 219.158.8.122 (219.158.8.122) [AS4837] 6.879 ms 219.158.103.42 (219.158.103.42) [AS4837] 7.887 ms 5 219.158.24.134 (219.158.24.134) [AS4837] 7.200 ms 15.168 ms 219.158.96.209 (219.158.96.209) [AS4837] 10.676 ms 6 219.158.10.30 (219.158.10.30) [AS4837] 18.259 ms 17.446 ms 13.075 ms 7 219.158.40.234 (219.158.40.234) [AS4837] 12.487 ms 11.106 ms 11.150 ms 8 202.84.153.53 (202.84.153.53) [AS4637] 42.944 ms 42.888 ms i-0-1-1-4.hkhh-core02.bi.telstraglobal.net (202.84.154.237) [AS4637] 159.077 ms 9 i-97.hkgg01.telstraglobal.net (202.84.156.54) [AS4637] 14.679 ms 14.828 ms 14.875 ms 10 unknown.telstraglobal.net (134.159.208.158) [AS4637] 13.638 ms 13.667 ms 13.615 ms 11 * * * 12 * * * 13 * * * 14 * * * 15 * * * 16 * * * 17 * * * 18 * * * 19 * * * 20 * * * 21 * * * 22 * * * 23 * * * 24 * * * 25 * * * 26 * * * 27 * * * 28 * * * 29 * * * 30 * * * root@PORT:~#
root@PORT:~# whois 202.134.94.89 % [whois.apnic.net] % Whois data copyright terms http://www.apnic.net/db/dbcopyright.html % Information related to '202.134.64.0 - 202.134.95.255' % Abuse contact for '202.134.64.0 - 202.134.95.255' is 'abuse@dyxnet.com' inetnum: 202.134.64.0 - 202.134.95.255 netname: DIYIXIAN descr: Diyixian.com Limited country: HK org: ORG-DL2-AP admin-c: ND17-AP tech-c: ND17-AP abuse-c: AD757-AP status: ALLOCATED PORTABLE remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-HK-DIYIXIAN mnt-routes: MAINT-HK-DIYIXIAN mnt-irt: IRT-DIYIXIAN-HK last-modified: 2020-06-22T05:36:39Z source: APNIC irt: IRT-DIYIXIAN-HK address: 25/F Global Gateway, address: 168 Yeung Uk Rd, address: Tsuen Wan, address: Hong Kong. e-mail: noc@dyxnet.com abuse-mailbox: abuse@dyxnet.com admin-c: ND17-AP tech-c: ND17-AP auth: # Filtered remarks: abuse@dyxnet.com was validated on 2020-06-22 remarks: noc@dyxnet.com was validated on 2020-06-22 mnt-by: MAINT-HK-DIYIXIAN last-modified: 2020-06-22T05:35:42Z source: APNIC organisation: ORG-DL2-AP org-name: Diyixian.com Limited country: HK address: 37/F, Tower 1, Metroplaza, address: 223 Hing Fong Road, address: Kwai Fong, address: New Territories, phone: +852-2187-7600 fax-no: +852-2187-7677 e-mail: peering@dyxnet.com mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2017-08-29T23:20:52Z source: APNIC role: ABUSE DIYIXIANHK address: 25/F Global Gateway, address: 168 Yeung Uk Rd, address: Tsuen Wan, address: Hong Kong. country: ZZ phone: +000000000 e-mail: noc@dyxnet.com admin-c: ND17-AP tech-c: ND17-AP nic-hdl: AD757-AP remarks: Generated from irt object IRT-DIYIXIAN-HK abuse-mailbox: abuse@dyxnet.com mnt-by: APNIC-ABUSE last-modified: 2020-06-22T05:36:39Z source: APNIC person: DYX NOC nic-hdl: ND17-AP e-mail: noc@dyxnet.com address: Unit 2501, address: 25/F Global Gateway, address: 168 Yeung Uk Rd, address: Tsuen Wan, address: Hong Kong. phone: +852-3152-2626 fax-no: +852-3152-5024 country: HK mnt-by: MAINT-HK-GENESIS last-modified: 2008-09-04T07:29:32Z source: APNIC % This query was served by the APNIC Whois Service version 1.88.15-SNAPSHOT (WHOIS-NODE2) root@PORT:~#
root@PORT:~# whois AS9584 % [whois.apnic.net] % Whois data copyright terms http://www.apnic.net/db/dbcopyright.html % Information related to 'AS9216 - AS10239' as-block: AS9216 - AS10239 descr: APNIC ASN block remarks: These AS numbers are further assigned by APNIC remarks: to APNIC members and end-users in the APNIC region admin-c: HM20-AP tech-c: HM20-AP mnt-by: APNIC-HM mnt-lower: APNIC-HM last-modified: 2009-05-19T07:00:23Z source: APNIC role: APNIC Hostmaster address: 6 Cordelia Street address: South Brisbane address: QLD 4101 country: AU phone: +61 7 3858 3100 fax-no: +61 7 3858 3199 e-mail: helpdesk@apnic.net admin-c: AMS11-AP tech-c: AH256-AP nic-hdl: HM20-AP remarks: Administrator for APNIC notify: hostmaster@apnic.net mnt-by: MAINT-APNIC-AP last-modified: 2013-10-23T04:06:51Z source: APNIC % Information related to 'AS9584' % Abuse contact for 'AS9584' is 'abuse@dyxnet.com' aut-num: AS9584 as-name: GENESIS-AP descr: Diyixian.com Limited country: HK import: from AS4635 action pref=90; accept ANY import: from AS4058 action pref=100; accept ANY import: from AS4637 action pref=100; accept ANY export: to AS4635 announce AS9584 export: to AS4058 announce AS9584 export: to AS4637 announce AS9584 default: to AS4058 action pref=100; networks ANY org: ORG-DL2-AP admin-c: LM29-AP tech-c: MY23-AP abuse-c: AG788-AP mnt-lower: MAINT-HK-GENESIS mnt-routes: MAINT-HK-GENESIS mnt-by: APNIC-HM mnt-irt: IRT-GEN-NET-HK last-modified: 2020-06-22T05:36:41Z source: APNIC irt: IRT-GEN-NET-HK address: Unit 2501, Global Gateway (HK), address: 168 Yeung Uk Road, address: Tsuen Wan, address: Hong Kong. e-mail: noc@dyxnet.com abuse-mailbox: abuse@dyxnet.com admin-c: ND17-AP tech-c: ND17-AP auth: # Filtered remarks: abuse@dyxnet.com was validated on 2020-06-22 remarks: noc@dyxnet.com was validated on 2020-06-22 mnt-by: MAINT-HK-GENESIS last-modified: 2020-06-22T05:35:42Z source: APNIC organisation: ORG-DL2-AP org-name: Diyixian.com Limited country: HK address: 37/F, Tower 1, Metroplaza, address: 223 Hing Fong Road, address: Kwai Fong, address: New Territories, phone: +852-2187-7600 fax-no: +852-2187-7677 e-mail: peering@dyxnet.com mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2017-08-29T23:20:52Z source: APNIC role: ABUSE GENNETHK address: Unit 2501, Global Gateway (HK), address: 168 Yeung Uk Road, address: Tsuen Wan, address: Hong Kong. country: ZZ phone: +000000000 e-mail: noc@dyxnet.com admin-c: ND17-AP tech-c: ND17-AP nic-hdl: AG788-AP remarks: Generated from irt object IRT-GEN-NET-HK abuse-mailbox: abuse@dyxnet.com mnt-by: APNIC-ABUSE last-modified: 2020-06-22T05:36:41Z source: APNIC person: Lap Man address: Unit 7-10, 27/F, Prosperity Center, address: 25 Chong Yip Street, address: Ngau Tau Kok, address: Kowloon, Hong Kong. country: HK phone: +852-2187-7631 fax-no: +852-2787-7677 e-mail: manlap@diyixian.com nic-hdl: LM29-AP mnt-by: MAINT-HK-GENESIS last-modified: 2008-09-04T07:29:14Z source: APNIC person: Max Yeung address: Unit 7-10, 27/F, Prosperity Center, address: 25 Chong Yip Street, address: Ngau Tau Kok, address: Kowloon, Hong Kong. country: HK phone: +852-2187-7661 fax-no: +852-2187-7677 e-mail: maxy@diyixian.com nic-hdl: MY23-AP mnt-by: MAINT-HK-GENESIS last-modified: 2008-09-04T07:29:14Z source: APNIC % This query was served by the APNIC Whois Service version 1.88.15-SNAPSHOT (WHOIS-NODE2) root@PORT:~#
root@PORT:~# whois AS4635 % [whois.apnic.net] % Whois data copyright terms http://www.apnic.net/db/dbcopyright.html % Information related to 'AS4608 - AS4865' as-block: AS4608 - AS4865 descr: APNIC ASN block remarks: These AS numbers are further assigned by APNIC remarks: to APNIC members and end-users in the APNIC region admin-c: HM20-AP tech-c: HM20-AP mnt-by: APNIC-HM mnt-lower: APNIC-HM last-modified: 2019-05-20T03:52:26Z source: APNIC role: APNIC Hostmaster address: 6 Cordelia Street address: South Brisbane address: QLD 4101 country: AU phone: +61 7 3858 3100 fax-no: +61 7 3858 3199 e-mail: helpdesk@apnic.net admin-c: AMS11-AP tech-c: AH256-AP nic-hdl: HM20-AP remarks: Administrator for APNIC notify: hostmaster@apnic.net mnt-by: MAINT-APNIC-AP last-modified: 2013-10-23T04:06:51Z source: APNIC % Information related to 'AS4635' % Abuse contact for 'AS4635' is 'noc-admin@hkix.net' aut-num: AS4635 as-name: HKIX-RS1 descr: Hong Kong Internet Exchange--Route Server 1 descr: The Hong Kong Internet Exchange Limited country: HK org: ORG-THKI1-AP admin-c: HKIE1-AP tech-c: HKIE1-AP abuse-c: AH919-AP mnt-lower: MAINT-HKIX-HK mnt-routes: MAINT-HKIX-HK mnt-by: APNIC-HM mnt-irt: IRT-HKIX1-HK last-modified: 2020-06-22T06:03:28Z source: APNIC irt: IRT-HKIX1-HK address: Pi ch'iu Building, The Chinese University of Hong Kong, Shatin N.T. e-mail: noc-admin@hkix.net abuse-mailbox: noc-admin@hkix.net admin-c: HKIE1-AP tech-c: HKIE1-AP auth: # Filtered remarks: noc-admin@hkix.net was validated on 2020-06-22 mnt-by: MAINT-HKIX-HK last-modified: 2020-06-22T06:03:14Z source: APNIC organisation: ORG-THKI1-AP org-name: The Hong Kong Internet Exchange Limited country: HK address: Room 801, 8/F., Wu Ho Man Yuen Bldg. address: The Chinese University of Hong Kong phone: +852-39438800 fax-no: +852-26035001 e-mail: noc-admin@hkix.net mnt-ref: APNIC-HM mnt-by: APNIC-HM last-modified: 2019-12-19T12:55:58Z source: APNIC role: ABUSE HKIX1HK address: Pi ch'iu Building, The Chinese University of Hong Kong, Shatin N.T. country: ZZ phone: +000000000 e-mail: noc-admin@hkix.net admin-c: HKIE1-AP tech-c: HKIE1-AP nic-hdl: AH919-AP remarks: Generated from irt object IRT-HKIX1-HK abuse-mailbox: noc-admin@hkix.net mnt-by: APNIC-ABUSE last-modified: 2020-06-22T06:03:28Z source: APNIC role: Hong Kong Internet Exchange Network Admin address: Pi Chiu Building, The Chinese University of Hong Kong, Shatin, N.T. country: HK phone: +852-39438800 e-mail: noc-admin@hkix.net admin-c: HKIE1-AP tech-c: HKIE1-AP nic-hdl: HKIE1-AP notify: noc-admin@hkix.net mnt-by: MAINT-HKIX-HK last-modified: 2019-01-08T08:44:26Z source: APNIC % This query was served by the APNIC Whois Service version 1.88.15-SNAPSHOT (WHOIS-NODE1) root@PORT:~#
香港第一线集团是香港的一个IDC服务商
在这里以香港第一线集团网站(www.dyxnet.com)为例说明其所属的数据中心是几线BGP接入
1、首先通过traceroute命令查询网站IP对应的AS号
traceroute -A www.dyxnet.com
我们得到香港第一线集团网站IP地址是202.134.93.74,其所属的数据中心AS号是9584,对应的出口IP地址是202.134.94.89
今天很奇怪的是只有在广东的服务器上面才能traceroute出某个ip地址的结果,可能全国大网做了什么限制traceroute
2、通过whois命令查询香港第一线AS号的出口IP归属
whois 202.134.94.89
可以看到202.134.64.0 - 202.134.95.255 这一段ip地址都是属于香港第一线集团的,其网站IP地址202.134.93.74正是在这一段IP地址内。
3、通过whois命令查询香港第一线集团数据中心是几线BGP接入
whois AS9584
在这里可以看到,香港第一线集团的AS号9584和AS4635、AS4058、AS4637建立了BGP连接,是一个三线BGP。
我们还可以继续查这3个AS对应的相关信息
AS4635是来自香港中文大学的一个互联网路由出口
AS4058就更强大了,和几十个AS自治系统互联!
