Be sure to check out the main Bogon Reference for more information on the project and terminology used, and why it is important to keep your bogon filters up-to-date.
We provide bogon tracking through DNS via several reversed-IP zones. These zones are queried by reversing the octets of an IPv4 address (or nibbles of an IPv6 address) and appending a zone name, much like reverse DNS (in-addr.arpa and ip6.arpa) and DNSBL queries.
If the IP address represented by a given query is a bogon, the response will be an A RR of 127.0.0.2. You may also query for a TXT RR, which will indicate the bogon prefix within which the given address resides (no TXT record will be present for non-bogon queries).
The available Bogon DNS zones are:
We can verify that
192.168.1.1 is part of a bogon prefix:
dig +short 126.96.36.199.bogons.cymru.com 127.0.0.2
We can verify that
10.0.0.0/8 is a bogon prefix:
dig +short 0.0.0.10.bogons.cymru.com 127.0.0.2
We can check the IPv4 fullbogons zone for
check what prefix it is part of:
dig +short 188.8.131.52.v4.fullbogons.cymru.com 127.0.0.2 dig +short 184.108.40.206.v4.fullbogons.cymru.com TXT "198.51.100.0/24"
We can check the IPv6 fullbogons zone for
2001:DB8:FEEB:DEEF::242, and see what prefix it is part of, but it won't be pretty because we have to expand out all of the zeroes to do it:
dig +short 220.127.116.11.0.0.0.0.0.0.0.0.0.0.0.0.f.e.e.d.b.e.e.f.8.b.d.0.1.0.0.2.v6.fullbogons.cymru.com 127.0.0.2 dig +short 18.104.22.168.0.0.0.0.0.0.0.0.0.0.0.0.f.e.e.d.b.e.e.f.8.b.d.0.1.0.0.2.v6.fullbogons.cymru.com TXT "2001:db8::/29"
(Note that the prefix returned for the TXT query above will likely change in the future; the IPv6 documentation prefix is actually 2001:db8::/32, it is aggregated as a /29 in the IPv6 fullbogons feed because the immediately adjacent prefixes have not yet been assigned to any end-users.)
Zone transfers of the entire bogons.cymru.com zone are permitted fromns1.cymru.com, ns2.cymru.com, and ns3.cymru.com. This can be accomplished with the following syntax:
dig @ns1.cymru.com. axfr bogons.cymru.com.
dig @ns2.cymru.com. axfr bogons.cymru.com.
dig @ns3.cymru.com. axfr bogons.cymru.com.
Zone transfers are not currently offered for the fullbogons.cymru.com zones.