Break through CDN protection and kill 360 website guard to accelerate lebaidu cloud Acceleration

Break through CDN protection and kill 360 website guard to accelerate lebaidu cloud Acceleration

What CDN acceleration products are available on the Internet, such as 360 website guard, jiasule, and Baidu cloud acceleration? It also provides website firewall, DDoS protection, CC protection, and CDN acceleration Protection Functions

When you are on the R station, you will have trouble and block the firewall. before going to bed last night, you thought of a simple bypass method;

To verify my ideas
I uploaded a Trojan horse to a host with 360 website guard for testing:

Save the direct connection:

We can see that it was intercepted directly. When you visit this website, the returned IP address is not the real IP address of the host, but the cdn ip Address:

You have to find the real IP address of the host by bypassing the interception. There are many methods
The target site generally does not place all second-level domain names on cdn, such as the test level-2 domain name.

Google site: Click the target domain name to see if there is any second-level domain name. troubleshoot one by one. After confirming that the second-level domain name of cdn is not used, bind the target domain name to the same ip address locally, if you can access the website, it means that the target site and the second-level domain name are on the same server.
If the server is not on the same server or in the same C segment, scan all ip addresses that open port 80 in the C segment and try again.
If google cannot search, it does not mean no. we construct a dictionary with a common second-level domain name to guess its second-level domain name. Such as mail, cache, and img.
And this tool http://ip.2cto.com will record the ip changes of the site, through the historical ip address of the target site can find the real ip
Many cdns in China do not have nodes for foreign services, and REQUESTS outside China direct to the real ip address. Some people say that the foreign NS and the foreign VPN are used, but the success rate is too low.

My method is to use a foreign multi-node ping tool, such as just-ping, to ping the target domain name from dozens of nodes around the world, it is likely to find the real ip address.
Another method is to send a message to the webmaster, or when you register a member, an email notification will be sent to find the IP address of the email.

Next, let's do it. Find the real IP address and add it to the hosts file. When you access the website, the real IP address is returned. The connection will not be blocked in one sentence; then you can do whatever you want.