Solved

detect dns server

Posted on 2013-01-06
2
307 Views
Last Modified: 2013-01-10
sounds like a strange question, but is there a way to detect all dns servers on our internal network?
0
Comment
Question by:al4629740
2 Comments
 
LVL 9

Accepted Solution

by:
gt2847c earned 400 total points
ID: 38749548
Several possible ways to discover active servers, not necessarily all of them (especially if someone is attempting to conceal them)...

Cisco and other enterprise class network equipment support netflow collection.  Using netflow data you can look for traffic on TCP and UDP port 53.  Any internal network address answering traffic on 53 will likely be a DNS server or doing something it isn't supposed to which is still interesting.

Placing a sniffer (Wireshark, TCPDump, etc) in a central network traffic location and mirroring traffic to it can also be used to scan for the same traffic as above.

Actively scanning for systems answering on TCP and/or UDP 53.  NMAP is a free port scan utility that can do this.  There are plenty of commercial offerings as well.  Anything listening (and answering) on 53 is either a DNS server or again doing something it probably shouldn't be...
0
 
LVL 23

Assisted Solution

by:Suliman Abu Kharroub
Suliman Abu Kharroub earned 100 total points
ID: 38752878
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
DNS Connector Delivery 5 76
Claiming a Domain Name 7 52
Additional DC vs Child Domain 12 39
Windows server:  Forwarding to 8.8.8.8 vs using root hints 2 26
We recently endured a series of broadcast storms that caused our ISP to shut us down for brief periods of time. After going through a multitude of tests, we determined that the issue was related to Intel NIC drivers on some new HP desktop computers …
Configuring network clients can be a chore, especially if there are a large number of them or a lot of itinerant users.  DHCP dynamically manages this process, much to the relief of users and administrators alike!
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question