| Author |
Message |
Jaime
Guest
|
 Posted:
Fri Jan 14, 2005 8:01 pm Post subject:
Locating/listing of DNS servers |
|
|
Hi guys,
Any idea how to identify, locate or trace all DNS servers in a network?
Any command, tool, or etc?
Pls help.. tks.. |
|
| Back to top |
|
 |
Todd J Heron
Guest
|
| Posted:
Fri Jan 14, 2005 8:39 pm Post subject:
Re: Locating/listing of DNS servers |
|
|
Try:
nslookup <domainname>
Afraid that this will find DNS servers for only your internal Active
Directory domain name. It will not find DNS servers in the DMZ, or DNS
servers on your LAN not in your domain (such as in a lab). To find these, I
think you need to script the portqry tool to find all machines listening on
port 53.
--
Todd J Heron, MCSE
Windows Server 2003/2000/NT
----------------------------------------------------------------------------
This posting is provided "as is" with no warranties and confers no rights |
|
| Back to top |
|
|
Herb Martin
Guest
|
| Posted:
Fri Jan 14, 2005 9:01 pm Post subject:
Re: Locating/listing of DNS servers |
|
|
"Jaime" <Jaime@discussions.microsoft.com> wrote in message
news:9FE48DCE-2E08-41E1-9CA8-305842E1D119@microsoft.com...
| Quote: | Hi guys,
Any idea how to identify, locate or trace all DNS servers in a network?
Any command, tool, or etc?
Pls help.. tks..
|
Are they hiding or just doing their job?
As long as they are (authoritatively) holding zones and
you know the zone names then this works easily:
for each %a in (domain1, dom2, dom3) do nslookup -q=NS %a
If the list of domains is long, switch to file processing:
for /f each %a in (domains.txt) do nslookup -q=NS %a
(double % signs if you put the above in a batch file.)
If you wish to find caching only or other "lurkers" you
will have to try something like NMap:
NMap http://www.insecure.org
But curiousity demands asking, what is your motivation
for this?
(Rogue DNS servers really don't matter very much or
at least very often.)
The NMap folks also have a VERY useful list of top
network security tools (most of which work on Windows):
http://www.insecure.org/tools.html
--
Herb Martin |
|
| Back to top |
|
|
John Smith
Guest
|
| Posted:
Fri Jan 14, 2005 9:47 pm Post subject:
Re: Locating/listing of DNS servers |
|
|
yes, nmap is a work of beauty - glad to see it mentioned in a win ng.
On Fri, 14 Jan 2005 06:01:05 -0800, Jaime
wrote:
| Quote: | Hi guys,
Any idea how to identify, locate or trace all DNS servers in a network?
Any command, tool, or etc?
Pls help.. tks.. |
|
|
| Back to top |
|
|
Herb Martin
Guest
|
| Posted:
Fri Jan 14, 2005 10:14 pm Post subject:
Re: Locating/listing of DNS servers |
|
|
"John Smith" <jsmith@macroshaft.com> wrote in message
news:pan.2005.01.14.15.47.21.529886@macroshaft.com...
| Quote: | yes, nmap is a work of beauty - glad to see it mentioned in a win ng.
|
THose other tools listed on insecure.org also contain
other tools that are works of beauty, useful, and otherwise
interesting.
--
Herb Martin
| Quote: |
On Fri, 14 Jan 2005 06:01:05 -0800, Jaime
wrote:
Hi guys,
Any idea how to identify, locate or trace all DNS servers in a network?
Any command, tool, or etc?
Pls help.. tks..
|
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in