General use:

  1. nslookup
  2. set type=any
  3. can now query domains e.g. sch.uk
  4. server servername server ns0.ja.net - can then query the server servername
  5. ls -t ns domainname e.g. ls -t ns sch.uk - lists all the domains under the domain entered
  6. ls -d domainname gives an alternative listing

Using nslookup to investigate too many hops problems

  1. Check mail exchanger for sender
    1. enter nslookup
    2. set type=any
    3. enter domainname which will give you the mail exchanger
  2. enter traceroute mail_exchange to show route it takes

Can also do nslookup -querytype=mx name to check it exists

Finding the Authoritive NameServer for an IP Address

For this example we want to find the master server for 10.10.194.45

 1. Enter nslookup
 2.  > 10.10.194.45  - if this resolves you will get the fully qualified name
 3.  > set domain=//domainname//
 4.  > set debug </b></font>
 5.  > 10.10.194.45 - gives authoritive records and name servers e.g 
      10.IN-ADDR.ARPA
      nameserver=nameserver.bobblehat.com
 6. > //nameserver// - gives IP address of nameserver
 7. > server //IP_address_of_nameserver//
 8. > ls -d 10.IN-ADDR.ARPA - shows contents of database
 9. > exit </b></font>

Recent Changes