collinsn
asked on
Identify Clients DNS Settings
Hi,
I need to be able to identify that a visitor, visiting my site is using the correct DNS Settings. Is there any method / script to confirm this.
Thx
Nev
I need to be able to identify that a visitor, visiting my site is using the correct DNS Settings. Is there any method / script to confirm this.
Thx
Nev
How do you define "correct?" What would be some examples of correct vs. incorrect?
ASKER
We have clients that I need to validate if their Primary and Secondary DNS settings are set to ours, rather than google, e.g. 8.8.8.8 or 8.8.4.4
I think the best way is with firewall configuration. This will not "validate", but it will enforce compliance. Essentially, create a firewall rule that allows access to port 53 UDP/TCP to accepted dns servers and restrict all others.
Depending on the firewall, you may even be able to distinguish between guests and authenticated users.
One caveat, make sure DHCP is setup with the correct DNS settings.
Depending on the firewall, you may even be able to distinguish between guests and authenticated users.
One caveat, make sure DHCP is setup with the correct DNS settings.
Agree with rfportilla. Why simply validate if what you really want is enforcement?
ASKER
Hi, this is not what I'm looking for.
Let me ask the question a different way. How can I see what DNS a client is using when visiting my WebSite?
Let me ask the question a different way. How can I see what DNS a client is using when visiting my WebSite?
I see, web site, not physical location.
You can't. It's like trying to figure out where someone looked up your phone number without specifically asking them.
You can't. It's like trying to figure out where someone looked up your phone number without specifically asking them.
ASKER
I know you can get their IP through PHP, so was hoping I could get all the details.
DNS is like a public phone book. The browser only checks it for the IP address and then makes the request directly to the IP. There is no protocol support (or requirement) to transmit the DNS server info.
If there is a specific problem related to this, maybe you should post that instead. If you are concerned with DNS pointing to the wrong place, you can shorten the TTL of the DNS records so that clients are pulling stale records.
ASKER
I understand DNS and IP Tables Firewall, I was just hoping to find a way of confirming a user on our site has the correct DNS entries configured when using the SmartDNS services I'm providing...
SmartDNS services I'm providingAre these 'public' DNS services like Google's? Most people get DNS thru their ISP (and don't know where they are getting it either!). I can't see that they could use your service (unless it is public) or that there is any way for you to check what they're using.
ASKER
Yes, my DNS servers are public using ACL list based on IP Address to control access. I'm just looking for a way to show the user that their DNS is correctly setup to use our DNS Service.
Thx
Nev
Thx
Nev
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I'm sorry we couldn't be more help. Would you mind sharing the method by which you are doing this?
ASKER
Unfortunately, did not get the answer needed,