nslookup 使用說明
nslookup 使用說明 <BR>有些時候, user 可能會想要手動查詢 DNS 上一些資料, 或者是要看看 DNS 是否有問題, 此時我們最常用的工具就是 nslookup 了, 基本上 nslookup 會根據 /etc/resolv.conf 的內容去找到所要使用的 local DNS server. <BR><BR>使用說明 <BR><BR>打入 nslookup 命令後, 會看到 > 提示符號, 此時打 ? 就會出現 nslookup 說明 <BR>Default Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>>? <BR><BR>$Id: nslookup.help,v 8.4 1996/10/25 18:09:41 vixie Exp $ <BR><BR>Commands: (identifiers are shown in uppercase, [] means optional) <BR>NAME - print info about the host/domain NAME using default server <BR>NAME1 NAME2 - as above, but use NAME2 as server <BR>help or ? - print info on common commands; see nslookup(1) for details <BR>set OPTION - set an option <BR> all - print options, current server and host <BR> debug - print debugging information <BR> d2 - print exhaustive debugging information <BR> defname - append domain name to each query <BR> recurse - ask for recursive answer to query <BR> vc - always use a virtual circuit <BR> domain=NAME - set default domain name to NAME <BR> srchlist=N1 - set domain to N1 and search list to N1,N2, etc. <BR> root=NAME - set root server to NAME <BR> retry=X - set number of retries to X <BR> timeout=X - set initial time-out interval to X seconds <BR> querytype=X - set query type, e.g., A,ANY,CNAME,HINFO,MX,PX,NS,PTR,SOA,TXT,WKS,SRV,NAPTR <BR> port=X - set port number to send query on <BR> type=X - synonym for querytype <BR> class=X - set query class to one of IN (Internet), CHAOS, HESIOD or ANY <BR>server NAME - set default server to NAME, using current default server <BR>lserver NAME - set default server to NAME, using initial server <BR>finger - finger the optional USER at the current default host <BR>root - set current default server to the root <BR>ls DOMAIN [> FILE] - list addresses in DOMAIN (optional: output to FILE) <BR> -a -list canonical names and aliases <BR> -h -list HINFO (CPU type and operating system) <BR> -s -list well-known services <BR> -d -list all records <BR> -t TYPE -list records of the given type (e.g., A,CNAME,MX, etc.) <BR>view FILE - sort an 'ls' output file and view it with more <BR>exit - exit the program, ^D also exits <BR>>^D <BR><BR>Interactive/Noninteractive (交談式/非交談式) <BR><BR>執行 nslookup 時可以直接在後面跟著我們要查詢的資料, 那麼 nslookup 會直接把結果傳回來 <BR>如果只打入 nslookup , 則進入交談模式, 出現提示符號 >, 此時 nslookup 會等待 user input command. <BR><BR>tung@traveler:~> nslookup www.yohoo.com <BR>Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>Non-authoritative answer: <BR>Name: yohoo.com <BR>Address:216.116.98.143 <BR>Aliases:www.yohoo.com <BR><BR>tung@traveler:~> nslookup <BR>Default Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>> www.yohoo.com <BR>Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>Non-authoritative answer: <BR>Name: yohoo.com <BR>Address:216.116.98.143 <BR>Aliases:www.yohoo.com <BR><BR>Authoritative/Non-Authoritative <BR><BR>在查詢時有時會出現 Non-authoritative answer, 代表這個答案是由 local DNS 的 cache 中直接讀出來的, 而不是 local DNS 向真正負責這個 domain 的 name server 問來的. <BR><BR>常用的一些 option/command <BR><BR>1. set all <BR>可以得知目前 nslookup 的一些 default 設定值 <BR>tung@traveler:~> nslookup <BR>Default Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>> set all <BR>Default Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>Set options: <BR>nodebug defname search recurse <BR>nod2 novc noignoretc port=53 <BR>querytype=A class=IN timeout=5 retry=4 <BR>root=a.root-servers.net. <BR>domain=ee.ncku.edu.tw <BR>srchlist=ee.ncku.edu.tw <BR><BR>2. server dns_server_ip <BR>表示將內定的 local DNS 換成另一部 server <BR>Ex: server 140.116.2.6 <BR><BR>3. set type=any <BR>表示在查詢某個 domain name 時, 將和這個 domain name 的一些相關資料一併顯示出來 <BR>> set type=any <BR>> www.yohoo.com <BR>Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>Non-authoritative answer: <BR>www.yohoo.com canonical name = yohoo.com <BR><BR>Authoritative answers can be found from: <BR>yohoo.com nameserver = ns1.netgateway.net <BR>yohoo.com nameserver = ns2.netgateway.net <BR>ns1.netgateway.net internet address = 216.116.98.7 <BR>ns2.netgateway.net internet address = 216.116.98.8 <BR><BR>在上面的這個例子, 我們除了知道 www.yohoo.com 的 IP 外, 我們還得知了 yohoo.com 是由哪部 name server 在負責的. 因此如果想要知道 www.yohoo.com 真正在 yohoo.com 上的記錄是如何, 而不要有 local DNS cache 中傳回的資料, 我們可以配合使用 server 這個 command 將 default local DNS 改為負責 yohoo.com 的 DNS, 然後再查詢一次 <BR>> server 216.116.98.7 <BR>Default Server:ns1.netgateway.net <BR>Address:216.116.98.7 <BR><BR>> www.yohoo.com <BR>Server:ns1.netgateway.net <BR>Address:216.116.98.7 <BR><BR>Name: yohoo.com <BR>Address:216.116.98.143 <BR>Aliases:www.yohoo.com <BR><BR>4. set type=ptr <BR>本來要由 IP 反查 domain name時, 在直接打 IP 就行了, 但如果已經下了 type=any 的話, 要由 IP 反查時就沒那麼方便了, 此時 IP 4 個數字要倒著寫, 最後還要加上 in-addr.arpa. 以查 140.116.72.219 為例, 要輸入的就是 219.72.116.140.in-addr.arpa <BR>tung@traveler:~> nslookup <BR>Default Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>> 140.116.72.219 <BR>Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>Name: garfield.ee.ncku.edu.tw <BR>Address:140.116.72.219 <BR><BR>> set type=any <BR>> 140.116.72.219 <BR>Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>*** sun4.ee.ncku.edu.tw can't find 140.116.72.219: Non-existent host/domain <BR>> 219.72.116.140.in-addr.arpa <BR>Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>219.72.116.140.in-addr.arpa name = garfield.ee.ncku.edu.tw <BR>72.116.140.IN-ADDR.ARPA nameserver = sun4.ee.ncku.edu.tw <BR>sun4.ee.ncku.edu.tw internet address = 140.116.72.14 <BR><BR>另外一個辦法就是先下 set type=ptr 或 set type=a 命令, 脫離 type=any 模式, 再進行 IP 反查 domain name 的 command <BR>> set typr=ptr <BR>> 140.116.72.219 <BR>Server:sun4.ee.ncku.edu.tw <BR>Address:140.116.72.14 <BR><BR>219.72.116.140.in-addr.arpa name = garfield.ee.ncku.edu.tw <BR>72.116.140.IN-ADDR.ARPA nameserver = sun4.ee.ncku.edu.tw <BR>sun4.ee.ncku.edu.tw internet address = 140.116.72.14 <BR><BR>5. ls domain <BR>這個命令是要求 name server 將其負責的 zone 內容 show 出來, 這個動作相當於 name server 的整份記錄從 server 端傳回給 nslookup 這個程式, 這種傳回整個 zone 的動作叫作 zone transfer <BR>> set type=any <BR>> ee.ncku.edu.tw <BR>Server:cs.ncku.edu.tw <BR>Address:140.116.2.6 <BR><BR>ee.ncku.edu.twnameserver = sun4.ee.ncku.edu.tw <BR>ee.ncku.edu.twpreference = 1, mail exchanger = eembox.ee.ncku.edu.tw <BR>ee.ncku.edu.twinternet address = 140.116.72.15 <BR>ee.ncku.edu.tw <BR> origin = sun4.ee.ncku.edu.tw <BR> mail addr = root.sun4.ee.ncku.edu.tw <BR> serial = 1999033001 <BR> refresh = 3600 (1H) <BR> retry = 900 (15M) <BR> expire= 3600000 (5w6d16h) <BR> minimum ttl = 3600 (1H) <BR>ee.ncku.edu.twnameserver = sun4.ee.ncku.edu.tw <BR>sun4.ee.ncku.edu.tw internet address = 140.116.72.14 <BR>eembox.ee.ncku.edu.tw internet address = 140.116.72.15 <BR>> ls ee.ncku.edu.tw <BR>Default Server:cs.ncku.edu.tw <BR>Address:140.116.2.6 <BR><BR>> <BR>$ORIGIN ee.ncku.edu.tw. <BR>@ 1H IN A 140.116.72.15 <BR>hdlib4 1H IN A 140.116.72.4 <BR>ds114 1H IN A 140.116.72.114 <BR>hdlib5 1H IN A 140.116.72.5 <BR>ds115 1H IN A 140.116.72.115 <BR>yokoyama1 1H IN A 140.116.227.217 <BR>hdlib6 1H IN A 140.116.72.6 <BR>ds116 1H IN A 140.116.72.116 <BR>yokoyama2 1H IN A 140.116.227.218 <BR>ds117 1H IN A 140.116.72.117 <BR>ds120 1H IN A 140.116.72.120 <BR>ds118 1H IN A 140.116.72.118 <BR>ds121 1H IN A 140.116.72.121 <BR>ds119 1H IN A 140.116.72.119 <BR>ds122 1H IN A 140.116.72.122 <BR>ds123 1H IN A 140.116.72.123 <BR>intelab01 1H IN A 140.116.227.39 <BR><BR><BR><BR><BR><BR><BR><BR> 學習了,謝謝您的資訊 : )
頁:
[1]