Hey everyone, I've noticed that when I do a dig command, I don't get any authoritative records back. For example a dig to cnn.com just yields:
At first I thought it was because my caching server already had it, but I tried a multitude of sites, and none return any authoritative records. How is this?
Even with the +authority switch it doesn't return anything. Is it possible the ISP can block this ? That was my first thought, or is there something else at play?
Last edited by Scott; 11-29-2013 at 05:39 PM..
Reason: Code tags
I am supposed to setup a Domain Name Server, and I don't really know how to do this, can someone either help me, or point me in the direction of a site that has a good explination of how to do this.
Thanks,
Ronnie (5 Replies)
Hello,
I've created new DNS servers and changed all of the clients /etc/resolv.conf to point to them, but when I check the old DNS logs, I see that the clients are still querying it. Does anybody know why?
thanks, (2 Replies)
Hello,
I'm using CentOS 5.3, and I connect to a VPN in order to work. The problem is that I'm constantly accessing things on the local network and the remote network. But once I'm connected to the VPN I can't access local addresses by name, I have to use the ip-address.
What I'd like is to... (4 Replies)
I'd like to get some opnions on choosing DNS server:
Windows DNS vs Linux BIND comparrsion:
1) managment, easy of use
2) Security
3) features
4) peformance
5) ??
I personally prefer Windows DNS server for management, it supports GUI and command line. But I am not sure about security... (2 Replies)
I am trying to setup a CentOS 6.2 server that will be doing 3 things DHCP, DNS & Samba for a very small office (2 users). The idea being this will replace a very old Win2k server. The users are all windows based clients so only the server will be Linux based.
I've installed CentOS 6.2 with... (4 Replies)
I have read many tutorials on bind and i understand the A,MX, CNAME records.
Internally, on a LAN we can install bind and create all these records and we can tell all PC and servers to use this bind as DNS server.that's fine.
On the Internet, when we have purchased a valid domain like... (5 Replies)
Since a few weeks i use Ubuntu 16 on my laptop:
# uname -a
Linux xxxx 4.8.0-52-generic #55~16.04.1-Ubuntu SMP Fri Apr 28 14:36:29 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux
Because i want to use a custom name server i set the properties in the "Edit Connections" dialogue to the following:
... (2 Replies)
Discussion started by: bakunin
2 Replies
LEARN ABOUT DEBIAN
dnstracer
DNSTRACER(8) General Commands Manual DNSTRACER(8)NAME
dnstracer - trace a chain of DNS servers to the source
SYNOPSIS
dnstracer [options] name
DESCRIPTION
dnstracer determines where a given Domain Name Server (DNS) gets its information from, and follows the chain of DNS servers back to the
servers which know the data.
Options are:
-c Disable local caching.
-C Enable negative caching.
-o Enable overview of received answers at the end.
-q queryclass
Change the query-class, default is A. You can either specify a number of the type (if you're brave) or one of the following
strings: a, aaaa, a6, soa, cname, hinfo, mx, ns, txt and ptr.
-r retries
Number of retries for DNS requests, default 3.
-s server
DNS server to use for the initial request, default is acquired from the system. If a dot is specified (.), A.ROOT-SERVERS.NET will
be used.
-v Be verbose on what sent or received.
-4 Use only IPv4 servers, don't query IPv6 servers (only available when IPv6 support hasn't been disabled)
-S sourceaddress
Use this as source-address for the outgoing packets.
HOW IT WORKS
It sends the specified name-server a non-recursive request for the name.
Non-recursive means: if the name-server knows it, it will return the data requested. If the name-server doesn't know it, it will return
pointers to name-servers that are authoritive for the domain part in the name or it will return the addresses of the root name-servers.
If the name server does returns an authoritative answer for the name, the next server is queried. If it returns an non-authoritative answer
for the name, the name servers in the authority records will be queried.
The program stops if all name-servers are queried.
Make sure the server you're querying doesn't do forwarding towards other servers, as dnstracer is not able to detect this for you.
It detects so called lame servers, which are name-servers which has been told to have information about a certain domain, but don't have
this information.
EXAMPLES
Search for the A record of www.mavetju.org on your local nameserver:
dnstracer www.mavetju.org
Search for the MX record of mavetju.org on the root-nameservers:
dnstracer "-s" . "-q" mx mavetju.org
Search for the PTR record (hostname) of 212.204.230.141:
dnstracer "-q" ptr 141.230.204.212.in-addr.arpa
And for IPv6 addresses:
dnstracer "-q" ptr "-s" . "-o" 2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.6.4.0.2.0.0.0.0.8.b.0.e.f.f.3.ip6.int
SEE ALSO ntptrace(8), traceroute(8), dig(1)AUTHOR
Edwin Groothuis, edwin@mavetju.org (http://www.mavetju.org)
See http://www.mavetju.org/contacts.php for mailing-lists.
February 10, 2008 February 10, 2008 DNSTRACER(8)