weisi · July 25, 2020 06:42
diff --git a/dns_ttl.sh b/dns_ttl.sh
 #!/bin/bash
 # Weisi Dai <[email protected]>
 #
 # Usage: bash dns_ttl.sh 8.8.8.8
 #
 # Dependencies: mtr dig iptables bc

 DOMAIN=twitter.com
 DNS=$1

 TRACEROUTEFILE=`mktemp`
 MANGLETEMPFILE=`mktemp`

 iptables-save -t mangle > $MANGLETEMPFILE

 mtr $DNS -c 1 -l -n | grep '^h' | cut -b 3- > $TRACEROUTEFILE

 INITTTL=$(tail -n 1 $TRACEROUTEFILE | cut -d ' ' -f 1)

 for TTL in `seq $INITTTL -1 1`; do

    iptables-restore <<EOF
 *mangle
 -A POSTROUTING -d $DNS/32 -p udp -m udp --dport 53 -j TTL --ttl-set $TTL
 COMMIT
 EOF

    if dig +time=1 +tries=2 +short $DOMAIN @${DNS} 1>/dev/null 2>&1; then
        :
    else
        grep "^$(echo $TTL + 1 | bc)" $TRACEROUTEFILE
        break
    fi

 done

 iptables-restore $MANGLETEMPFILE

 rm $TRACEROUTEFILE $MANGLETEMPFILE
	#!/bin/bash
	# Weisi Dai <[email protected]>
	#
	# Usage: bash dns_ttl.sh 8.8.8.8
	#
	# Dependencies: mtr dig iptables bc

	DOMAIN=twitter.com
	DNS=$1

	TRACEROUTEFILE=`mktemp`
	MANGLETEMPFILE=`mktemp`

	iptables-save -t mangle > $MANGLETEMPFILE

	mtr $DNS -c 1 -l -n \| grep '^h' \| cut -b 3- > $TRACEROUTEFILE

	INITTTL=$(tail -n 1 $TRACEROUTEFILE \| cut -d ' ' -f 1)

	for TTL in `seq $INITTTL -1 1`; do

	iptables-restore <<EOF
	*mangle
	-A POSTROUTING -d $DNS/32 -p udp -m udp --dport 53 -j TTL --ttl-set $TTL
	COMMIT
	EOF

	if dig +time=1 +tries=2 +short $DOMAIN @${DNS} 1>/dev/null 2>&1; then
	:
	else
	grep "^$(echo $TTL + 1 \| bc)" $TRACEROUTEFILE
	break
	fi

	done

	iptables-restore $MANGLETEMPFILE

	rm $TRACEROUTEFILE $MANGLETEMPFILE