anetwork
asked on
DNS - dump of all info
How can I dump ALL of the domain info (A records, PTR records, MX records etc) for a particular domain, using nslookup, from either an Internet DNS server or a W2K DNS server?
Ta
Ta
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
...and of course, if this is not your own domain, chanses are good that the admin has blocked the possibility of zone transfers, in which case you can not do a "complete dump" of the zone at all.
j2: yeah. however, this guy has asked the question twice, so I split that bit of the answer onto the other question :)
ASKER
DaveHowe,
Is 'ls -d' a complete dump? Would I know if any records have been left out?
Adrian
Is 'ls -d' a complete dump? Would I know if any records have been left out?
Adrian
here is an example. Most companies do block the listing of their hosts by outside entities for security purposes. If it is your own servers, this should work.
C:\>nslookup
DNS request timed out.
timeout was 2 seconds.
*** Can't find server name for address 207.230.75.222: Timed out
Default Server: cache02.ns.uu.net
Address: 198.6.1.3
> ls -d cisco.com
[cache02.ns.uu.net]
*** Can't list domain cisco.com: Query refused
>
You might be able to use Dig to get what you want. Dig or Domain Information Groper is similar in functionality to NSLOOKUP, however, it provides much more detailed information. http://www.netscantools.com/nstpro_nslookup.html:
http://www.netliner.com/dig.html
C:\>nslookup
DNS request timed out.
timeout was 2 seconds.
*** Can't find server name for address 207.230.75.222: Timed out
Default Server: cache02.ns.uu.net
Address: 198.6.1.3
> ls -d cisco.com
[cache02.ns.uu.net]
*** Can't list domain cisco.com: Query refused
>
You might be able to use Dig to get what you want. Dig or Domain Information Groper is similar in functionality to NSLOOKUP, however, it provides much more detailed information. http://www.netscantools.com/nstpro_nslookup.html:
http://www.netliner.com/dig.html
its the same dump a slave DNS server would get - ie, all the data is there, but it is not guaranteed to be in any particular order and all the comments that were in the db file (if any) are gone.
ASKER
It's the 'ls -d' that is the key to it.
Thanks
Thanks