---

Self-Test Tool

We provide a basic self-test tool. Please note the following:

• The test takes some time to run (~1 minute); please be patient.
• The test will load a one-time report; it will not update the contents of report shown here. In the future, this site and the tester will be more fully-featured, but the the moment, it is designed to network adminstrators see if their network is still vulnerable to spoofing-based intrusion.

---

Internal DNS Resolvers Reached by Spoofed-Source Queries

Each of the IP addresses below acted on our spoofed queries, indicating that our spoofed queries successfully penetrated the network.

5 classes of source addresses were spoofed. These include:

• Itself
   The destination itself used as the source address.
• Localhost
   127.0.0.1 for IPv4 and ::1 for IPv6.
• Private
   192.168.0.10 for IPv4 and fc00::10 for IPv6.
• Same Prefix
   Addresses from the same /24 (IPv4) or /64 (IPv6) prefix as the destination (other than the destination itself).
• Same ASN
   Addresses from the same ASN as the destination but outside the /24 or /64 prefix.

Additionally, for some resolvers we were able to infer the host operating system by either 1) eliciting a TCP-based query to our authoritative servers and analyzing the TCP query using p0f, or 2) analyzing the range of source ports used by the resolver when querying our server and comparing the range used to known ephemeral port selection strategies.

Finally, we classify each resolver reached as open or closed, based off of whether or not it queried our server in response to an un-spoofed query. Note that even reaching an open resolver indicates a lack of DSAV, as the traffic would have been blocked at the network border had DSAV been in place.

Destination	Spoofed Sources Reaching Destination	Inferred OS		Open
		(p0f)	(Source Port Range)
193.135.75.110	193.135.75.52 Same ASN 193.135.79.75 193.135.91.217 193.135.65.79 193.135.93.60 193.135.73.131 193.135.90.124 193.135.68.126 193.135.72.69 193.135.65.68 193.135.85.65 193.135.83.177 193.135.67.146 193.135.66.37 193.135.83.63 193.135.87.246 193.135.88.176 193.135.77.109 193.135.92.80 193.135.73.248 193.135.72.104 193.135.77.148 193.135.82.196 193.135.84.69 193.135.86.28 193.135.67.49 193.135.64.165 193.135.76.146 193.135.71.85 193.135.69.241 193.135.81.166 193.135.69.3 193.135.88.62 193.135.90.193 193.135.89.101 193.135.81.219 193.135.79.247 193.135.78.234 193.135.64.206 193.135.85.98 193.135.87.151 193.135.79.18 193.135.76.110 193.135.91.215 193.135.94.4 193.135.94.168 193.135.73.232 193.135.89.49 193.135.82.182 193.135.74.170 193.135.95.195 193.135.92.137 193.135.93.120 193.135.78.92 193.135.86.69 193.135.71.103 193.135.84.110 193.135.68.201 193.135.70.8 193.135.80.128 193.135.70.219 193.135.66.213 193.135.94.254	-	-	-
193.135.75.126	193.135.75.15 Same ASN 193.135.79.75 193.135.91.217 193.135.65.79 193.135.93.60 193.135.73.131 193.135.90.124 193.135.68.126 193.135.72.69 193.135.65.68 193.135.85.65 193.135.83.177 193.135.67.146 193.135.66.37 193.135.83.63 193.135.87.246 193.135.88.176 193.135.77.109 193.135.92.80 193.135.73.248 193.135.72.104 193.135.77.148 193.135.82.196 193.135.84.69 193.135.86.28 193.135.67.49 193.135.64.165 193.135.76.146 193.135.71.85 193.135.69.241 193.135.81.166 193.135.69.3 193.135.88.62 193.135.90.193 193.135.89.101 193.135.81.219 193.135.79.247 193.135.78.234 193.135.64.206 193.135.85.98 193.135.87.151 193.135.79.18 193.135.76.110 193.135.91.215 193.135.94.4 193.135.94.168 193.135.73.232 193.135.89.49 193.135.82.182 193.135.74.170 193.135.95.195 193.135.92.137 193.135.93.120 193.135.78.92 193.135.86.69 193.135.71.103 193.135.84.110 193.135.68.201 193.135.70.8 193.135.80.128 193.135.70.219 193.135.66.213 193.135.94.254	-	-	-

---

Contact

For questions, comments, and additional information, please send email to dsav-info@byu.edu.