How does SSLlabs.com get my anycast IPs?

Comments

1 comment

  • Justin

    Hi @Wiley_Sanders

    The DNS resolution for certain resolvers returns the anycast addresses. It's likely SSL Labs is using one of those resolvers:

    ```

    google dns server

    dig +short @8.8.8.8 deadpool.turnitin.com 151.101.1.154 151.101.65.154 151.101.129.154 151.101.193.154

    level3 dns server

    dig +short @209.244.0.3 deadpool.turnitin.com 151.101.61.154

    ```

    It's like this because we've found that certain resolvers don't always return the closest POP for a user when they query, but the anycast IPs will do the right thing when we return that for them.

    0
    Comment actions Permalink

Please sign in to leave a comment.