Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1199
  • Last Modified:

DNS - dump of all info

How can I dump ALL of the domain info (A records, PTR records, MX records etc) for a particular domain, using nslookup, from either an Internet DNS server or a W2K DNS server?

Ta
0
anetwork
Asked:
anetwork
1 Solution
 
Dave HoweSoftware and Hardware EngineerCommented:
first, find an authorative server for the domain:

set q=mx
<domain>

then, set nslookup to read from that server and perform a zone transfer:

server <authorative server>
ls -d <domain>

alternatively, you can use the free Sam Spade tool to perform zone transfers from the comfort of a gui :)
0
 
j2Commented:
...and of course, if this is not your own domain, chanses are good that the admin has blocked the possibility of zone transfers, in which case you can not do a "complete dump" of the zone at all.
0
 
Dave HoweSoftware and Hardware EngineerCommented:
j2: yeah. however, this guy has asked the question twice, so I split that bit of the answer onto the other question :)
0
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

 
anetworkAuthor Commented:
DaveHowe,

Is 'ls -d' a complete dump?  Would I know if any records have been left out?

Adrian
0
 
lrmooreCommented:
here is an example. Most companies do block the listing of their hosts by outside entities for security purposes. If it is your own servers, this should work.

C:\>nslookup
DNS request timed out.
   timeout was 2 seconds.
*** Can't find server name for address 207.230.75.222: Timed out
Default Server:  cache02.ns.uu.net
Address:  198.6.1.3

> ls -d cisco.com
[cache02.ns.uu.net]
*** Can't list domain cisco.com: Query refused
>


You might be able to use Dig to get what you want. Dig or Domain Information Groper is similar in functionality to NSLOOKUP, however, it provides much more detailed information. http://www.netscantools.com/nstpro_nslookup.html:
http://www.netliner.com/dig.html

0
 
Dave HoweSoftware and Hardware EngineerCommented:
its the same dump a slave DNS server would get - ie, all the data is there, but it is not guaranteed to be in any particular order and all the comments that were in the db file (if any) are gone.
0
 
anetworkAuthor Commented:
It's the 'ls -d' that is the key to it.  

Thanks
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now