https://github.com/dmitryfillo/berserker_resolver
Fast mass dns resolver
https://github.com/dmitryfillo/berserker_resolver
asynchronous asyncio dns load-balancer python resolver
Last synced: 10 months ago
JSON representation
Fast mass dns resolver
- Host: GitHub
- URL: https://github.com/dmitryfillo/berserker_resolver
- Owner: DmitryFillo
- License: bsd-2-clause
- Created: 2014-11-20T01:37:14.000Z (over 11 years ago)
- Default Branch: master
- Last Pushed: 2018-07-23T00:35:13.000Z (over 7 years ago)
- Last Synced: 2025-04-06T03:41:26.497Z (11 months ago)
- Topics: asynchronous, asyncio, dns, load-balancer, python, resolver
- Language: Python
- Homepage:
- Size: 63.5 KB
- Stars: 20
- Watchers: 2
- Forks: 3
- Open Issues: 2
-
Metadata Files:
- Readme: README.rst
- License: LICENSE
Awesome Lists containing this project
README
==================
Berserker Resolver
==================
.. image:: https://travis-ci.org/DmitryFillo/berserker_resolver.svg?branch=master
:target: https://travis-ci.org/DmitryFillo/berserker_resolver
.. image:: https://coveralls.io/repos/DmitryFillo/berserker_resolver/badge.svg?branch=master&service=github
:target: https://coveralls.io/github/DmitryFillo/berserker_resolver?branch=master
Fast mass dns resolver which can bypass loadbalancers.
.. contents::
Motivation
==========
DNS servers can provide load balancing of many types. It can be simple round-robin or another algorithm that
depends on the implementation of a particular DNS server. See `RFC 1794 `_
to understand the capabilities and flexibility of the DNS protocol. As a result, it is possible that when the ordinary
resolver is not able to get *all* IP addresses, e.g. DNS server can return small sets of IP addresses (or even only one IP)
with low TTL per request. Number and presence of addresses may vary depending on the load of servers. Important to note
that this information can be cached by other DNS servers and can be distorted. Getting all IP addresses problem arises when
you want to resolve many domains with sufficient accuracy which useful for blocking network purposes, e.g. websites filtering,
parental controls, etc.
Let's try to make a couple probes for www.twitter.com.
.. code:: bash
; <<>> DiG 9.10.2-P1 <<>> @8.8.8.8 www.twitter.com +nocomments +noquestion
; (1 server found)
;; global options: +cmd
www.twitter.com. 593 IN CNAME twitter.com.
twitter.com. 23 IN A 199.16.156.70
twitter.com. 23 IN A 199.16.156.198
twitter.com. 23 IN A 199.16.156.102
twitter.com. 23 IN A 199.16.156.6
;; Query time: 5 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Sat Aug 08 04:01:43 MSK 2015
;; MSG SIZE rcvd: 122
.. code:: bash
; <<>> DiG 9.10.2-P1 <<>> @8.8.8.8 www.twitter.com +nocomments +noquestion
; (1 server found)
;; global options: +cmd
www.twitter.com. 596 IN CNAME twitter.com.
twitter.com. 26 IN A 199.16.156.230
twitter.com. 26 IN A 199.16.156.70
twitter.com. 26 IN A 199.16.156.198
twitter.com. 26 IN A 199.16.156.102
;; Query time: 4 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Sat Aug 08 04:01:44 MSK 2015
;; MSG SIZE rcvd: 122
You see different RR sets with small TTL. What about another public DNS?
.. code:: bash
; <<>> DiG 9.10.2-P1 <<>> @77.88.8.8 www.twitter.com +nocomments +noquestion
; (1 server found)
;; global options: +cmd
www.twitter.com. 30 IN CNAME twitter.com.
twitter.com. 30 IN A 199.16.156.102
twitter.com. 30 IN A 199.16.156.6
twitter.com. 30 IN A 199.16.156.38
twitter.com. 30 IN A 199.16.156.230
;; Query time: 2 msec
;; SERVER: 77.88.8.8#53(77.88.8.8)
;; WHEN: Sat Aug 08 04:04:05 MSK 2015
;; MSG SIZE rcvd: 111
Let's try www.youtube.com.
.. code:: bash
; <<>> DiG 9.10.2-P1 <<>> @8.8.8.8 www.youtube.com +nocomments +noquestion
; (1 server found)
;; global options: +cmd
www.youtube.com. 21313 IN CNAME youtube-ui.l.google.com.
youtube-ui.l.google.com. 13 IN CNAME wide-youtube.l.google.com.
wide-youtube.l.google.com. 13 IN A 74.125.143.198
;; Query time: 5 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Sat Aug 08 04:06:08 MSK 2015
;; MSG SIZE rcvd: 121
.. code:: bash
; <<>> DiG 9.10.2-P1 <<>> @8.8.8.8 www.youtube.com +nocomments +noquestion
; (1 server found)
;; global options: +cmd
www.youtube.com. 21599 IN CNAME youtube-ui.l.google.com.
youtube-ui.l.google.com. 299 IN CNAME wide-youtube.l.google.com.
wide-youtube.l.google.com. 299 IN A 173.194.71.198
;; Query time: 6 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Sat Aug 08 04:06:11 MSK 2015
;; MSG SIZE rcvd: 121
.. code:: bash
; <<>> DiG 9.10.2-P1 <<>> @84.200.70.40 www.youtube.com +nocomments +noquestion
; (1 server found)
;; global options: +cmd
www.youtube.com. 55513 IN CNAME youtube-ui.l.google.com.
youtube-ui.l.google.com. 271 IN A 216.58.209.46
;; Query time: 41 msec
;; SERVER: 84.200.70.40#53(84.200.70.40)
;; WHEN: Sat Aug 08 04:07:29 MSK 2015
;; MSG SIZE rcvd: 94
This outputs may be outdated soon, but it is only necessary to show the behavior of DNS. Any website can use
load balancer and so you are not able to do full resolve these sites.
The solution is query many nameservers many times for each domain. Yes, it's a bit clumsy, but works well enough
in many cases. The resolving should be performed in multiple threads, because resolving in one thread is slow,
especially in this case.
And so Berserker Resolver is emerged.
*It's worth noting that full resolving may be impossible because GEO load balancing or resolving can be occurred
"at the wrong time in the wrong place" when some servers are down and their IP addresses are excluded from DNS pool by fault
tolerance algorithm. If you need actual information you should schedule resolving attempts, maintain your DNS database,
maybe perform resolving from different networks/servers. There is no universal solution for that cases, but you can use Berserker
Resolver as the backend in your application.*
Query backend
=============
Berserker Resolver is using `dnspython `_ as query backend and so operates with its built-in types.
Supported versions
==================
* Python 2.6
* Python 2.7
* Python 3.2
* Python 3.3
* Python 3.4
Installation
============
The best way::
pip install berserker_resolver
Resolver class
==============
Core of the Berserker Resolver.
Methods:
+ resolve
+ query
Properties:
+ nameservers
+ tries
+ timeout
+ qname
+ threads
+ www
+ www_combine
+ verbose
Properties can be assign via constructor or directly to the object.
Resolver.resolve
----------------
Resolve method. It takes list of domains and returns dictionary with results (dictionary of sets).
.. code:: python
from berserker_resolver import Resolver
domains = ['kernel.org', 'toster.ru']
resolver = Resolver()
result = resolver.resolve(domains)
print(result)
'''
{
'toster.ru': {
},
'kernel.org': {
,
,
}
}
'''
Resolver.query
--------------
Query method, wrapper around ``dns.resolver.Resolver.query`` from dnspython. It takes domain and nameserver,
and returns result of the query. Nameserver is optional, if not given, random from ``Resolver.nameservers``
will be used.
Can throw exception, see details `here `_.
.. code:: python
from berserker_resolver import Resolver
resolver = Resolver()
result = resolver.query('facebook.com')
print(list(result)) # []
# Query to the local dns.
result = resolver.query('facebook.com', '127.0.0.1')
print(list(result)) # []
Resolver.nameservers
--------------------
List of nameservers for resolving, each of them will be queried for particular domain.
The larger the list, the more chances to get all IP addresses, but it increases
time needed for resolving.
Default is ``['8.8.8.8', '8.8.4.4', '77.88.8.8', '77.88.8.1', '84.200.69.80', '84.200.70.40']``. There are
`Google Public DNS `_, `Yandex.DNS `_
and `DNS.WATCH `_.
Resolver.tries
--------------
Number of queries for each nameserver.
If the number of times increases, the resolving accuracy increases too, but it also
increases time to resolving.
Default is ``48``.
Resolver.timeout
----------------
The total number of seconds to spend trying to get an answer to the query.
Note that low timeout combined with high values of ``Resolver.tries`` and ``Resolver.threads`` can lead to
numerous timeout errors when nameserver does not have enough time to return a response.
Default is ``3``.
Resolver.threads
----------------
Number of threads.
More threads lead to increase speed of resolving, but too many threads lead to threads switching overhead.
You should test different numbers and choose one suitable for your systems. Also be careful with large number of threads, you can
flood the DNS server. If you want to use crazy large amount of threads, check
`stackoverflow thread `_ and
increase ``Resolver.timeout``.
Default is ``512``.
Resolver.qname
--------------
DNS query type name.
Default is ``A``.
Resolver.www
------------
Enables automatic addition/removal of *www* prefix depending on the domain.
.. code:: python
from berserker_resolver import Resolver
domains = ['wikipedia.org', 'www.toster.ru']
resolver = Resolver(www=True)
result = resolver.resolve(domains)
print(result)
'''
{
'toster.ru': {
},
'www.wikipedia.org': {
},
'www.toster.ru': {
},
'wikipedia.org': {
}
}
'''
Default is ``False``.
Resolver.www_combine
--------------------
Enables automatic combining *www* prefixed domains with theirs non-*www* versions.
.. code:: python
from berserker_resolver import Resolver
domains = ['facebook.com', 'www.facebook.com']
resolver = Resolver()
result = resolver.resolve(domains)
print(result)
'''
{
'facebook.com': {
},
'www.facebook.com': {
,
,
,
}
}
'''
resolver.www_combine = True
result = resolver.resolve(domains)
print(result)
'''
{
'www.facebook.com': {
,
,
,
}
}
'''
Powerful use case is combine this property together with ``Resolver.www``.
.. code:: python
from berserker_resolver import Resolver
domains = ['facebook.com']
resolver = Resolver(www=True, www_combine=True)
result = resolver.resolve(domains)
print(result)
'''
{
'www.facebook.com': {
,
,
,
}
}
'''
Default is ``False``.
Resolver.verbose
----------------
This property enables error reporting, e.g. nxdomain, noanswer, etc. ``Resolver.resolve`` normally returns
dictionary of sets with resolved domains, but with this option it returns dictionary with two keys:
+ success
+ error
.. code:: python
from berserker_resolver import Resolver
domains = ['nonexistent.domain', 'facebook.com']
resolver = Resolver(verbose=True)
result = resolver.resolve(domains)
print(result)
'''
{
'success': {
'facebook.com': {
}
},
'error': {
'nonexistent.domain': {
'77.88.8.1': NXDOMAIN(),
'8.8.4.4': NXDOMAIN(),
'8.8.8.8': NXDOMAIN(),
'77.88.8.8': NXDOMAIN()
}
}
}
'''
``result['success']`` is dictionary with successfully resolved domains, as if without ``Resolver.verbose``.
``result['error']`` is dictionary with unsuccessfully resolved domains where each key contains another dictionary
with per nameserver exception. Exceptions comes from dnspython backend as ``dns.exception.DNSException`` subclasses.
Check out `dnspython docs `_ for more
information about built-in exceptions.
*Note that particular domain can be placed in both dictionaries, because some nameservers can return answer and some not.*
.. code:: python
from berserker_resolver import Resolver
domains = ['facebook.com']
# 216.239.32.10 is ns1.google.com
resolver = Resolver(nameservers=['216.239.32.10', '8.8.8.8'], verbose=True)
result = resolver.resolve(domains)
print(result)
'''
{
'success': {
'facebook.com': {
}
},
'error': {
'facebook.com': {
'216.239.32.10': NoNameservers()
}
}
}
'''
Default is ``False``.