01-29-2014
A recursive query (which by the way is the default setting in dig) has nothing to do with returning subdomains.
If a DNS server does not have the requested information when it receives a recursive query, it queries other DNS servers until it gets the information, or until the query fails.
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
if i wanted to ping all the machines in a given directory (/etc/hosts) and return a total count of responses how would i go about scripting that?
complete newbie...so be gentle
if ; then //$1 = /etc/hosts
cd "$1"
//this puts me into the directory i need...but how do i send ... (2 Replies)
Discussion started by: trostycp
2 Replies
2. Shell Programming and Scripting
I would have searched for this but I couldn't really think of what to use for the search text...
I've got a situation where I need to automate responses to an executable when running it from a script so that it can be made into a job the operators don't have to interact with. When I run it... (2 Replies)
Discussion started by: djp
2 Replies
3. Shell Programming and Scripting
Dear MoDs,
I have several doubts regarding query domain using DIG process..
below is my dig process:-
*********************************************
dns-dual# /usr/bin/dig @dns-dual.surfweb.net.my my soa
; <<>> DiG 9.3.0 <<>> @dns-dual.surfweb.net.my my soa
;; global options: ... (1 Reply)
Discussion started by: unknown2205
1 Replies
4. Linux
Unfortunately googling the word 'chat' gives you zebedee billion responses that relate to everything and few of them refer to the linux chat command. I've read the man page and found a couple of examples but can't see how to do this.
I want to query the modem for it's manufacturer, product id... (8 Replies)
Discussion started by: Bashingaway
8 Replies
5. Shell Programming and Scripting
Hello,
I am trying to count how many times a subject makes a correct switch or a correct stay response in a simple task. I have data on which condition they were in (here, labeled "IMAGINE" and "RECALL"), as well as whether they made a left or right button response, and whether the outcome was... (5 Replies)
Discussion started by: Jahn
5 Replies
6. What is on Your Mind?
Hi.
Having a bit of quick fun putting some networking tools online.
Here is a DNS Lookup tool.
It's basically the DIG command line tool wrapped in forum formatting.
If you want more features, please post here.
I'm doing to make a few more network tools like this and move on to other... (1 Reply)
Discussion started by: Neo
1 Replies
7. IP Networking
One of our email recipients has 17 mx records, and our emailing program postfix on linux does not retrieve these records. When using dig, the same thing happens.
This command returns no mx records
>dig mx fnb.co.za
But when using +trace, the records get returned
>dig mx fnb.co.za +trace
... (4 Replies)
Discussion started by: Joop Kaashoek
4 Replies
8. UNIX for Beginners Questions & Answers
In this script:
#!/bin/bash
# bird
read -p "Enter name of a bird "
REPLY=$REPLY
birdname="duck sparrow hawk"
for i in $birdname
do
if ]
then
echo "Yes, that is a bird."
else
echo "That is not a bird."
fi
done
I get... (9 Replies)
Discussion started by: Xubuntu56
9 Replies
9. Windows & DOS: Issues & Discussions
I have two DNS resolvers in /etc/resolv.conf file. The top one is Windows DNS server, and the bottom one is my wi-fi router. Please see below. nameserver 192.168.1.126 nameserver 192.168.1.1
In Windows DNS server, the sole "Forward Lookup Zone" is biman.net
When I query for host in the zone... (6 Replies)
Discussion started by: broy32000
6 Replies
LEARN ABOUT NETBSD
dnssec-dsfromkey
DNSSEC-DSFROMKEY(8) BIND9 DNSSEC-DSFROMKEY(8)
NAME
dnssec-dsfromkey - DNSSEC DS RR generation tool
SYNOPSIS
dnssec-dsfromkey [-v level] [-1] [-2] [-a alg] [-l domain] [-T TTL] {keyfile}
dnssec-dsfromkey {-s} [-1] [-2] [-a alg] [-K directory] [-l domain] [-s] [-c class] [-T TTL] [-f file] [-A] [-v level] {dnsname}
DESCRIPTION
dnssec-dsfromkey outputs the Delegation Signer (DS) resource record (RR), as defined in RFC 3658 and RFC 4509, for the given key(s).
OPTIONS
-1
Use SHA-1 as the digest algorithm (the default is to use both SHA-1 and SHA-256).
-2
Use SHA-256 as the digest algorithm.
-a algorithm
Select the digest algorithm. The value of algorithm must be one of SHA-1 (SHA1), SHA-256 (SHA256), GOST or SHA-384 (SHA384). These
values are case insensitive.
-T TTL
Specifies the TTL of the DS records.
-K directory
Look for key files (or, in keyset mode, keyset- files) in directory.
-f file
Zone file mode: in place of the keyfile name, the argument is the DNS domain name of a zone master file, which can be read from file.
If the zone name is the same as file, then it may be omitted.
If file is set to "-", then the zone data is read from the standard input. This makes it possible to use the output of the dig command
as input, as in:
dig dnskey example.com | dnssec-dsfromkey -f - example.com
-A
Include ZSK's when generating DS records. Without this option, only keys which have the KSK flag set will be converted to DS records
and printed. Useful only in zone file mode.
-l domain
Generate a DLV set instead of a DS set. The specified domain is appended to the name for each record in the set. The DNSSEC Lookaside
Validation (DLV) RR is described in RFC 4431.
-s
Keyset mode: in place of the keyfile name, the argument is the DNS domain name of a keyset file.
-c class
Specifies the DNS class (default is IN). Useful only in keyset or zone file mode.
-v level
Sets the debugging level.
EXAMPLE
To build the SHA-256 DS RR from the Kexample.com.+003+26160 keyfile name, the following command would be issued:
dnssec-dsfromkey -2 Kexample.com.+003+26160
The command would print something like:
example.com. IN DS 26160 5 2 3A1EADA7A74B8D0BA86726B0C227AA85AB8BBD2B2004F41A868A54F0 C5EA0B94
FILES
The keyfile can be designed by the key identification Knnnn.+aaa+iiiii or the full file name Knnnn.+aaa+iiiii.key as generated by
dnssec-keygen(8).
The keyset file name is built from the directory, the string keyset- and the dnsname.
CAVEAT
A keyfile error can give a "file not found" even if the file exists.
SEE ALSO
dnssec-keygen(8), dnssec-signzone(8), BIND 9 Administrator Reference Manual, RFC 3658, RFC 4431. RFC 4509.
AUTHOR
Internet Systems Consortium
COPYRIGHT
Copyright (C) 2008-2012 Internet Systems Consortium, Inc. ("ISC")
BIND9 August 26, 2009 DNSSEC-DSFROMKEY(8)