With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?
Solved
detect dns server
Posted on 2013-01-06
sounds like a strange question, but is there a way to detect all dns servers on our internal network?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2 Comments
Several possible ways to discover active servers, not necessarily all of them (especially if someone is attempting to conceal them)...
Cisco and other enterprise class network equipment support netflow collection. Using netflow data you can look for traffic on TCP and UDP port 53. Any internal network address answering traffic on 53 will likely be a DNS server or doing something it isn't supposed to which is still interesting.
Placing a sniffer (Wireshark, TCPDump, etc) in a central network traffic location and mirroring traffic to it can also be used to scan for the same traffic as above.
Actively scanning for systems answering on TCP and/or UDP 53. NMAP is a free port scan utility that can do this. There are plenty of commercial offerings as well. Anything listening (and answering) on 53 is either a DNS server or again doing something it probably shouldn't be...
Cisco and other enterprise class network equipment support netflow collection. Using netflow data you can look for traffic on TCP and UDP port 53. Any internal network address answering traffic on 53 will likely be a DNS server or doing something it isn't supposed to which is still interesting.
Placing a sniffer (Wireshark, TCPDump, etc) in a central network traffic location and mirroring traffic to it can also be used to scan for the same traffic as above.
Actively scanning for systems answering on TCP and/or UDP 53. NMAP is a free port scan utility that can do this. There are plenty of commercial offerings as well. Anything listening (and answering) on 53 is either a DNS server or again doing something it probably shouldn't be...
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
I've written instructions for one router type, but this principle may be useful for others of the same brand and even other brands of router.
Problem:
I had an issue especially with mobile devices that refused to use DNS information supplied via…
This is the first one of a series of articles I’ll be writing to address technical issues that are always referred to as network problems. The network boundaries have changed, therefore having an understanding of how each piece in the network puzzl…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…
- Document Management
- Printers and Scanners
- Document Imaging
- Software-Other
- Images and Photos
- Adobe Acrobat, Photos / Graphics Software, Security, *scanning, *PDF
Suggested Courses
Course of the Month13 days, 12 hours left to enroll
656 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.