到我 LAN 上奇怪的子域的流量是否表明存在安全问题?
Does traffic to weird subdomains on my LAN indicate a security issue?
我是 OpenDNS 的用户,我注意到网络流量流向了我局域网中的奇怪子域。假设我路由器上的 "Local Domain Name" 设置名为 "mynetwork"。我看到许多对域的请求,例如:
lb._dns-sd._udp.mynetwork
db._dns-sd._udp.mynetwork
b._dns-sd._udp.mynetwork
tvovhvumfcuvo.mynetwork
pqwakwyids.mynetwork
vbqulcywazgwao.mynetwork
wjyuspdzzbac.mynetwork
etc.
如果这不是正常流量,我应该如何辨别我的问题出在哪里?例如,我应该在我的 Mac 上安装类似 "Little Snitch" 的东西吗?
您可能想查看来自 menandmice 的 this 回答,他们说:
These are queries generated by 'Multicast/Unicast DNS Service Discovery or
Zeroconf', which is a service of Apple 'Bonjour/Rendevous' or Unix Services like
'Avahi'. DNS Queries coming from Port 5353 are DNS queries from a Zeroconf service.
The DNS Service Discovery enabled clients are looking for pointers to services running in their network block 192.0.2.0/24.
This is harmless. If there is not PTR record for the requested ownernames, it
only means that unicast Zeroconf is not configured.
"unicast Zeroconf is not configured" 可能不是 您的 确切的问题,但总的来说 没什么好担心的。
我是 OpenDNS 的用户,我注意到网络流量流向了我局域网中的奇怪子域。假设我路由器上的 "Local Domain Name" 设置名为 "mynetwork"。我看到许多对域的请求,例如:
lb._dns-sd._udp.mynetwork
db._dns-sd._udp.mynetwork
b._dns-sd._udp.mynetwork
tvovhvumfcuvo.mynetwork
pqwakwyids.mynetwork
vbqulcywazgwao.mynetwork
wjyuspdzzbac.mynetwork
etc.
如果这不是正常流量,我应该如何辨别我的问题出在哪里?例如,我应该在我的 Mac 上安装类似 "Little Snitch" 的东西吗?
您可能想查看来自 menandmice 的 this 回答,他们说:
These are queries generated by 'Multicast/Unicast DNS Service Discovery or Zeroconf', which is a service of Apple 'Bonjour/Rendevous' or Unix Services like 'Avahi'. DNS Queries coming from Port 5353 are DNS queries from a Zeroconf service.
The DNS Service Discovery enabled clients are looking for pointers to services running in their network block 192.0.2.0/24.
This is harmless. If there is not PTR record for the requested ownernames, it only means that unicast Zeroconf is not configured.
"unicast Zeroconf is not configured" 可能不是 您的 确切的问题,但总的来说 没什么好担心的。