grace mode需要新增IP的請在這裡回報

[GoogleCodeExporter]

grace mode的vpnup.sh在這裡

http://code.google.com/p/autoddvpn/source/browse/trunk/grace.d/vpnup.sh

如果有被牆的網站，該網站的域名透過google 
dns解析出來的IP不在列表裡面，請在這裡回報。

回報時請注意：

1. 記錄有問題的域名為何，例如 'www.facebook.com'
2. 必須透過8.8.8.8查詢，並且主機跟8.8.8.8之間必須走VPN
3. 請把nslookup指令的結果一並貼上，例如

macbook-2:~ macbook$ nslookup www.youtube.com 8.8.8.8
Server:     8.8.8.8
Address:    8.8.8.8#53

Non-authoritative answer:
www.youtube.com canonical name = youtube-ui.l.google.com.
Name:   youtube-ui.l.google.com
Address: 66.102.7.136
Name:   youtube-ui.l.google.com
Address: 66.102.7.93
Name:   youtube-ui.l.google.com
Address: 66.102.7.190
Name:   youtube-ui.l.google.com
Address: 66.102.7.91

謝謝！

Original issue reported on code.google.com by pahud...@gmail.com on 30 Sep 2010 at 3:27

[GoogleCodeExporter]

youtube.com能登陆还是不能正常播放。使用firefx下firebug对请求��
�错的http request进行查询后：

root@shown_g300Nnh:~# nslookup v15.lscache5.c.youtube.com 8.8.8.8
Server:    8.8.8.8
Address 1: 8.8.8.8 google-public-dns-a.google.com

Name:      v15.lscache5.c.youtube.com
Address 1: 173.194.8.163

root@shown_g300Nnh:~# nslookup tc.v15.cache5.c.youtube.com 8.8.8.8
Server:    8.8.8.8
Address 1: 8.8.8.8 google-public-dns-a.google.com

Name:      tc.v15.cache5.c.youtube.com
Address 1: 208.117.254.163

Original comment by shown1...@gmail.com on 1 Oct 2010 at 12:57

[GoogleCodeExporter]

@shown1985

NetRange:       173.194.0.0 - 173.194.255.255
CIDR:           173.194.0.0/16

NetRange:       208.117.224.0 - 208.117.255.255
CIDR:           208.117.224.0/19

已經提交SVN, 感謝！

Original comment by pahud...@gmail.com on 1 Oct 2010 at 1:08

[GoogleCodeExporter]

要求加入blogger（blogspot）：

root@shown1985:~# nslookup www.blogger.com 8.8.8.8
Server:         8.8.8.8
Address:        8.8.8.8#53

Non-authoritative answer:
www.blogger.com canonical name = blogger.l.google.com.
Name:   blogger.l.google.com
Address: 72.14.204.191

Original comment by shown1...@gmail.com on 1 Oct 2010 at 3:41

[GoogleCodeExporter]

OK 新增了這個區段

NetRange:       72.14.192.0 - 72.14.255.255
CIDR:           72.14.192.0/18
OriginAS:
NetName:        GOOGLE
NetHandle:      NET-72-14-192-0-1
Parent:         NET-72-0-0-0-0
NetType:        Direct Allocation
NameServer:     NS2.GOOGLE.COM
NameServer:     NS3.GOOGLE.COM
NameServer:     NS4.GOOGLE.COM
NameServer:     NS1.GOOGLE.COM
RegDate:        2004-11-10
Updated:        2007-04-10
Ref:            http://whois.arin.net/rest/net/NET-72-14-192-0-1

Original comment by pahud...@gmail.com on 1 Oct 2010 at 4:17

[GoogleCodeExporter]

请求新增voanews:

root@shown_g300Nnh:~# nslookup www.voanews.com 8.8.8.8
Server:    8.8.8.8
Address 1: 8.8.8.8 google-public-dns-a.google.com

Name:      www.voanews.com
Address 1: 72.246.31.74 a72-246-31-74.deploy.akamaitechnologies.com
Address 2: 72.246.30.145 a72-246-30-145.deploy.akamaitechnologies.com

Original comment by shown1...@gmail.com on 3 Oct 2010 at 10:19

[GoogleCodeExporter]

@shown1985

pahud@van4 ~ $(23:18:08) curl -I -L   "http://www.voanews.com"
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: http://www.voanews.com/english/news/
Date: Sun, 03 Oct 2010 15:18:19 GMT
Connection: keep-alive

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Sun, 03 Oct 2010 15:04:54 GMT
Vary: Accept-Encoding
X-Server-Name: dv-c1-r3-u7-b5
Content-Type: text/html;charset=utf-8
Content-Length: 87012
Date: Sun, 03 Oct 2010 15:18:19 GMT
Connection: keep-alive
X-N: S

這個網站沒有被GFW的樣子。

另外我在思考是否一些沒有被GFWList列出的域名我們統一回報�
��GFWList比較好？
這樣grace 
mode只要運行一下python腳本就可以產生相應的結果了？

Original comment by pahud...@gmail.com on 3 Oct 2010 at 3:19

[GoogleCodeExporter]

http://autoproxy.org/zh-CN/Bookmarklet

這是回報到gfwList的bookmarklet
gfwList收錄之後，autoddvpn只要運行gfwListgen.py即可，這樣兩個社
區的用戶都可以享受到成果，也許這是一個很好的方法？

Original comment by pahud...@gmail.com on 3 Oct 2010 at 3:27

[GoogleCodeExporter]

这个站被gfw了，你看www.voanews.com/chinese 中文站

Original comment by shown1...@gmail.com on 4 Oct 2010 at 12:57

[GoogleCodeExporter]

@shown1985

首先我發現gfwLIst有收錄voanews.com/chinese
不過各地區透過8.8.8.8查詢www.voanews.com結果會不一樣 @_@

透過美國LA的

$ hostx www.voanews.com 8.8.8.8
www.voanews.com         CNAME   www.voanews.com.edgesuite.net
www.voanews.com.edgesuite.net   CNAME   a1053.g.akamai.net
a1053.g.akamai.net      A   96.17.156.82
a1053.g.akamai.net      A   96.17.156.10

從上海電信

$(09:11:26) hostx www.voanews.com 8.8.8.8
www.voanews.com         CNAME   www.voanews.com.edgesuite.net
www.voanews.com.edgesuite.net   CNAME   a1053.g.akamai.net
a1053.g.akamai.net      A   63.150.131.202
a1053.g.akamai.net      A   63.150.131.163

www.voanews.com會CNAME到a1053.g.akamai.net
而8.8.8.8會對不同的來源，對應a1053.g.akamai.net不同的A記錄解析
結果

上海電信
~ $(09:22:11) 
a1053.g.akamai.net      A   63.150.131.163
a1053.g.akamai.net      A   63.150.131.202

北京
 # hostx a1053.g.akamai.net 8.8.8.8
a1053.g.akamai.net      A   63.150.131.163
a1053.g.akamai.net      A   63.150.131.202

LA
pahud@vpn ~ $ hostx a1053.g.akamai.net 8.8.8.8
a1053.g.akamai.net      A   92.122.49.50
a1053.g.akamai.net      A   92.122.49.18

理論上從國內執行gfwLIstgen.py之後，應該會找到voanews.com並且��
�www.voanews.com解析出63.150.131.202 
63.150.131.163才對，我檢查看看。

Original comment by pahud...@gmail.com on 4 Oct 2010 at 1:28

[GoogleCodeExporter]

querying www.voanews.com
63.150.131.202
63.150.131.163

$ grep 63.150.131 vpnup.sh
route add -net 63.150.131.0/24 gw $VPNGW

處理好了，提交了vpnup.sh以及gfwListgen.py也修改過提交了。 

之後如果要查詢8.8.8.8我們一律從國內查詢吧，如果從國外有�
��能會產生akamai CDN不同的解析結果。

Original comment by pahud...@gmail.com on 4 Oct 2010 at 2:03

[GoogleCodeExporter]

不错我看了，我从seattle 
nslookup结果的确和国内不一样。但是如果要从国内nslookup的话�
��如何知道结果未被污染呢。

Original comment by shown1...@gmail.com on 4 Oct 2010 at 3:08

[GoogleCodeExporter]

如果國內client是透過DDWRT連出去，而DDWRT/autoddvpn到8.8.8.8之間��
�走VPN的，這樣client對8.8.8.8查詢就是安全的了。

Original comment by pahud...@gmail.com on 4 Oct 2010 at 3:14

[GoogleCodeExporter]

恩，理论上是对的，这样的话就不会存在污染。但我没明白��
�如果通过pptp到seattle查询dns的话不是相当于从国外查询一样��
�结果了么，为什么返回的还是国内cnd的结果？

Original comment by shown1...@gmail.com on 4 Oct 2010 at 9:14

[GoogleCodeExporter]

@shown1985

這個我現在也不好判斷是什麼原因。

Original comment by pahud...@gmail.com on 4 Oct 2010 at 2:20

[GoogleCodeExporter]

youtube怎么老出问题貌似？ip太多吗？：

> www.youtube.com 8.8.8.8
Server:  [8.8.8.8]
Address:  8.8.8.8

Non-authoritative answer:
Name:    youtube-ui.l.google.com
Addresses:  64.233.169.93, 64.233.169.91, 64.233.169.136, 64.233.169.190
Aliases:  www.youtube.com

Original comment by shown1...@gmail.com on 6 Oct 2010 at 6:49

[GoogleCodeExporter]

@show1985

NetRange:       64.233.160.0 - 64.233.191.255
CIDR:           64.233.160.0/19
OriginAS:
NetName:        GOOGLE

的確是Google IP， 我把 64.233.160.0/19加入了

Original comment by pahud...@gmail.com on 8 Oct 2010 at 1:26

[GoogleCodeExporter]

twitter又一新地址。。。注意看最后那个128.242.250.148

C:\Documents and Settings\Administrator>nslookup www.twitter.com 208.67.220.220
Server:  resolver2.opendns.com
Address:  208.67.220.220

Non-authoritative answer:
Name:    twitter.com
Addresses:  128.242.245.116, 168.143.162.36, 128.242.250.148
Aliases:  www.twitter.com

Original comment by shown1...@gmail.com on 9 Oct 2010 at 3:02

[GoogleCodeExporter]

twitter新地址验证再一次128.242.250.148

root@shown_g300Nnh:~# nslookup www.twitter.com 8.8.4.4
Server:    8.8.4.4
Address 1: 8.8.4.4 google-public-dns-b.google.com

Name:      www.twitter.com
Address 1: 128.242.245.212
Address 2: 128.242.250.148
Address 3: 168.143.171.84

Original comment by shown1...@gmail.com on 9 Oct 2010 at 3:05

[GoogleCodeExporter]

奇怪 128.242.250.148 這個IP我查不出來耶

macbook-2:~ macbook$ nslookup www.twitter.com 8.8.8.8
Server:     8.8.8.8
Address:    8.8.8.8#53

Non-authoritative answer:
www.twitter.com canonical name = twitter.com.
Name:   twitter.com
Address: 168.143.162.36
Name:   twitter.com
Address: 168.143.171.180
Name:   twitter.com
Address: 128.242.240.84

macbook-2:~ macbook$ nslookup www.twitter.com 8.8.4.4
Server:     8.8.4.4
Address:    8.8.4.4#53

Non-authoritative answer:
www.twitter.com canonical name = twitter.com.
Name:   twitter.com
Address: 128.242.240.244
Name:   twitter.com
Address: 128.242.240.148
Name:   twitter.com
Address: 128.242.245.148

會不會是臨時的？再觀察一個晚上看看？

Original comment by pahud...@gmail.com on 9 Oct 2010 at 3:18

[GoogleCodeExporter]

不像临时的，或者等等看，我从西雅图主机上直接nslookup

root@shown1985:~# nslookup www.twitter.com
Server:         4.2.2.2
Address:        4.2.2.2#53

Non-authoritative answer:
www.twitter.com canonical name = twitter.com.
Name:   twitter.com
Address: 128.242.240.212
Name:   twitter.com
Address: 128.242.245.84
Name:   twitter.com
Address: 128.242.250.148

Original comment by shown1...@gmail.com on 9 Oct 2010 at 3:54

[GoogleCodeExporter]

C:\Documents and Settings\Administrator>nslookup www.twitter.com 208.67.220.220
Server:  resolver2.opendns.com
Address:  208.67.220.220

Non-authoritative answer:
Name:    twitter.com
Addresses:  128.242.245.116, 128.242.250.148, 128.242.240.244
Aliases:  www.twitter.com

今天还是有250.148

Original comment by shown1...@gmail.com on 10 Oct 2010 at 3:25

[GoogleCodeExporter]

@shown1985

我看到了。
128.242.250.0/24 加入twitter網段，感謝！

Original comment by pahud...@gmail.com on 11 Oct 2010 at 2:24

[GoogleCodeExporter]

建议新增：www.businesstimes.com.cn 财经时报

root@shown1985:~# nslookup www.businesstimes.com.cn 8.8.8.8
Server:         8.8.8.8
Address:        8.8.8.8#53

Non-authoritative answer:
Name:   www.businesstimes.com.cn
Address: 58.64.128.234

Original comment by shown1...@gmail.com on 14 Oct 2010 at 4:28

[GoogleCodeExporter]

www.businesstimes.com.cn

這個我回報gfwList了，他們加入之後我這裡再生成一次vpnup.sh��
�可，這樣兩個社區都有好處。
我在思考是否facebook youtube google 
twitter以外的站台就比照這個模式來處理了。

idea?

Original comment by pahud...@gmail.com on 15 Oct 2010 at 4:08

[GoogleCodeExporter]

好是好，但是无法确定更新时间了~~你的sh文件更新频率呢，�
��何知道update了呢

Original comment by shown1...@gmail.com on 15 Oct 2010 at 4:23

[GoogleCodeExporter]

這個要分兩個來加強了，第一個是gfwListgen.py要能在主機上每�
��產生一次，並且自動提交到SVN

另外一個是路由器裡面最好有個CRON檢查SVN更新，有新的就wget
下來，然後重新執行vpnup.sh。

我來實驗看看了。

Original comment by pahud...@gmail.com on 15 Oct 2010 at 4:40

[GoogleCodeExporter]

等你结果。。

Original comment by shown1...@gmail.com on 15 Oct 2010 at 4:49

[GoogleCodeExporter]

好的，我先試試看。

Original comment by pahud...@gmail.com on 15 Oct 2010 at 5:04

[GoogleCodeExporter]

[deleted comment]

[GoogleCodeExporter]

请帮忙添加
1984bbs.org，多谢。

root@shown1985:~# nslookup 1984bbs.org 8.8.8.8
Server:         8.8.8.8
Address:        8.8.8.8#53

Non-authoritative answer:
Name:   1984bbs.org
Address: 64.182.117.20

Original comment by shown1...@gmail.com on 16 Oct 2010 at 2:11

[GoogleCodeExporter]

@shown1985

這樣吧，我這邊還是以gfwList的資料為主好了，除了facebook 
twitter youtube google 等網站可能有大量的class B class 
C之外，其他的還是回報到gfwList好了 

https://autoproxy.org/~jimmy/ap/

在自動化更新設計完成之前，還是麻煩你先依據自己的需求��
�入vpnup.sh裡面了。

1984bbs.org我已經回報給gfwList了。

Original comment by pahud...@gmail.com on 16 Oct 2010 at 2:27

[GoogleCodeExporter]

youtube又有新地址，麻烦添加。
> www.youtube.com
Server:     8.8.8.8
Address:    8.8.8.8#53

Non-authoritative answer:
www.youtube.com canonical name = youtube-ui.l.google.com.
Name:   youtube-ui.l.google.com
Address: 72.14.213.93
Name:   youtube-ui.l.google.com
Address: 72.14.213.91
Name:   youtube-ui.l.google.com
Address: 72.14.213.190
Name:   youtube-ui.l.google.com
Address: 72.14.213.136

Original comment by wuwu...@gmail.com on 31 Oct 2010 at 4:51

[GoogleCodeExporter]

@wuwu119

72.14.213雖然沒有被我列入youtube IP裡面，但是
route add -net 72.14.213.0/24 gw $VPNGW
這行已經有存在vpnup.sh裡面了，不過我還是再加入到上面吧

Original comment by pahud...@gmail.com on 31 Oct 2010 at 2:14

[GoogleCodeExporter]

twitter最近又不行了，好像它还有其它地址。

> twitter.com
Server:     8.8.8.8
Address:    8.8.8.8#53

Non-authoritative answer:
Name:   twitter.com
Address: 128.242.240.212
Name:   twitter.com
Address: 128.242.250.148
Name:   twitter.com
Address: 128.242.240.20
> 

Original comment by wuwu...@gmail.com on 6 Nov 2010 at 11:39

[GoogleCodeExporter]

@wuwu119

這些IP已經存在vpnup.sh裡面，請記得回報IP之前手動更新一下vp
nup.sh並且確認是否不在最新的vpnup.sh裡面，謝謝！

Original comment by pahud...@gmail.com on 6 Nov 2010 at 2:42

[GoogleCodeExporter]

维基百科的图片服务器无法访问，在北京网通访问失败，维��
�百科所有图片都无法显示
trace发现并未走vpn线路 域名：upload.wikipedia.org   
但是貌似在电信线路下是可以访问的，网通不行

Original comment by apsnow...@gmail.com on 9 Nov 2010 at 6:03

[GoogleCodeExporter]

@apsnowolf

 $ hostx upload.wikipedia.org 8.8.8.8
upload.wikipedia.org does not exist at google-public-dns-a.google.com, try again

不存在這個域名

Original comment by pahud...@gmail.com on 9 Nov 2010 at 6:06

[GoogleCodeExporter]

localhost:~ tiangary$ nslookup upload.wikimedia.org
Server:         192.168.1.1
Address:        192.168.1.1#53

Non-authoritative answer:
upload.wikimedia.org    canonical name = upload.pmtpa.wikimedia.org.
Name:   upload.pmtpa.wikimedia.org
Address: 208.80.152.3

localhost:~ tiangary$

sorry,域名发错了，实际为维基媒体的域名 
，维基词条中图片皆在此域名下

Original comment by apsnow...@gmail.com on 9 Nov 2010 at 3:52

[GoogleCodeExporter]

@apsnowolf

added :-)

http://code.google.com/p/autoddvpn/source/detail?r=433

Original comment by pahud...@gmail.com on 9 Nov 2010 at 5:47

[GoogleCodeExporter]

@apsnowof

不對，upload.wikimedia.org這個域名有被GFW嗎？
我這邊不翻牆看起來正常

$(01:53:02) curl -I http://upload.wikimedia.org
HTTP/1.0 403 Forbidden
Server: Sun-Java-System-Web-Server/7.0
Date: Tue, 09 Nov 2010 17:54:55 GMT
Content-Length: 142
Content-Type: text/html
X-Cache: HIT from sq86.wikimedia.org
X-Cache-Lookup: HIT from sq86.wikimedia.org:3128
X-Cache: MISS from sq81.wikimedia.org
X-Cache-Lookup: MISS from sq81.wikimedia.org:80
Connection: close

我還是先撤掉了，如果只是網通有問題電信沒問題的話，麻��
�你在vpnup_custom裡面加入即可。

Original comment by pahud...@gmail.com on 9 Nov 2010 at 5:56

[GoogleCodeExporter]

http://www.atchinese.com/ 亚洲时报无法访问
连接被重置，手动更新路由表后正常，请添加,非常感谢
localhost:~ tiangary$ nslookup www.atchinese.com 8.8.8.8
Server:         8.8.8.8
Address:        8.8.8.8#53

Non-authoritative answer:
www.atchinese.com       canonical name = atchinese.com.
Name:   atchinese.com
Address: 202.181.167.115

Original comment by apsnow...@gmail.com on 11 Nov 2010 at 10:06

[GoogleCodeExporter]

@apsnowolf

您好，這個域名上海電信不需要翻牆

~ $(22:59:04) curl -I http://www.atchinese.com/
HTTP/1.1 200 OK
Date: Thu, 11 Nov 2010 14:59:09 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.1.6
Set-Cookie: c1ee5d5b0134da8c6df6031d817e14ad=qo4bava1q3sh2da7gmjglv8ev1; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Thu, 11 Nov 2010 14:59:20 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Connection: close
Content-Type: text/html; charset=utf-8

另外，未來凡是www域名開頭的網頁打不開，煩請先回報到gfwLi
st, autoddvpn會定期從gfwList產生新的清單提交到svn。

Original comment by pahud...@gmail.com on 11 Nov 2010 at 3:01

[GoogleCodeExporter]

我另開一個issue重新開始, 請大家看清楚提交須知
http://code.google.com/p/autoddvpn/issues/detail?id=36

Original comment by pahud...@gmail.com on 11 Nov 2010 at 3:15

• Changed state: Done

[GoogleCodeExporter]

root@DreamBox:/etc/config# nslookup www.facebook.com 8.8.8.8
Server:    8.8.8.8
Address 1: 8.8.8.8 google-public-dns-a.google.com

Name:      www.facebook.com
Address 1: 8.7.198.45

Original comment by joyo...@gmail.com on 2 Dec 2012 at 9:34