DNS identfication and mitigation for Android phone

What are some reasons for not being able to ID my DNS server (specifically on my android phone)? My isp is At&t.  It's not that I don't have an address to lookup. It's more so that the windows nslookup command and the website https://www.whatsmydns.net/ yield no results.
Also, if someone could provide some mitigation steps or useful references  .

Much appreciated
Jonathan CamachoCompTIA A+ TechnicianAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

nociSoftware EngineerCommented:
The site you mention just checks if your name is still in some caches with old values instead of new ones, after your update your master DNS.
This would only work for PUBLIC dns records, never for private ones.

It can only tell you your DNS server if you ask for NS records.

The site works...
If you try that site with names with global coverage like google.com / fb.com you will see interesting results for IP addresses... they all differ.

So exactly are you trying to accomplish.
0
Jonathan CamachoCompTIA A+ TechnicianAuthor Commented:
I would like to verify the DNS server IP information I have to see if it does in fact belong to my mobile At&t ISP I use and that I'm not being redirected to a malicious or suspicious one.  It's not my personal/private DNS server. Could it be that my At&t mobile ISP has a private DNS server that I can not verify? Is this common for ISP?


Thanks
0
nociSoftware EngineerCommented:
I have no idea what IP information you have... here are some tools.

verify DNS:
dig +trace ns host.name.to.check
dig +short a host.name.to.check
dig +short aaaa host.name.to.check

IP Address:
https://whatismyipaddress.com/

If a site has a certificate:
curl -v https://host.name.to.check
(curl is a command line web tool, obtainable through

SSL Labs Certificate tester:
https://www.ssllabs.com/ssltest/analyze.html

From a client access a known server and verify through it's logs the IP addresses match....
For a target server dns trace can help, as well as https  certificate info.

Your ISP MAY use a different DNS server to send you the info if they like.
And they might transparantly pass traffic to known services though their own proxy, nothing can be done about that.
Without DNSSEC and SSL and a lot of things protected by VALID  (= matching certificates) encryption and possibly also use a different ISP to see if there are differences that are hard to explain... (f.e.  one site having two different signing CA's)  things are hard.

Only using Encryption done in the right way on ALL data transfers might get things right.
Using TOR might help as that also requires things to match elsewhere, then again not all sites are  accessible through TOR.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Do You Have a Trusted Wireless Environment?

A Trusted Wireless Environment is a framework for building a complete Wi-Fi network that is fast, easy to manage, and secure.

Jonathan CamachoCompTIA A+ TechnicianAuthor Commented:
Thank you very much for time and effort.
0
nociSoftware EngineerCommented:
curl is available on: https://curl.haxx.se/   (that part went missing appearantly).
0
Jonathan CamachoCompTIA A+ TechnicianAuthor Commented:
I'll brush up on this new resource.

Mean time if you don't mind retrieving some information from this private DNS server IP ( 172.26.38.1).

Thanks
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
DNS

From novice to tech pro — start learning today.