Find all current DNS recordsis it necessary to point my domain's dns servers to my hosting company?Set up DNS...
What do you call words made from common English words?
What happens when a metallic dragon and a chromatic dragon mate?
Why did the Germans forbid the possession of pet pigeons in Rostov-on-Don in 1941?
Copycat chess is back
Where to refill my bottle in India?
Eliminate empty elements from a list with a specific pattern
Email Account under attack (really) - anything I can do?
What do you call something that goes against the spirit of the law, but is legal when interpreting the law to the letter?
Is Fable (1996) connected in any way to the Fable franchise from Lionhead Studios?
What to wear for invited talk in Canada
Unbreakable Formation vs. Cry of the Carnarium
Add an angle to a sphere
Are cabin dividers used to "hide" the flex of the airplane?
Prime joint compound before latex paint?
Is there a name of the flying bionic bird?
What does "enim et" mean?
Shall I use personal or official e-mail account when registering to external websites for work purpose?
Is there a familial term for apples and pears?
Does a dangling wire really electrocute me if I'm standing in water?
Does it makes sense to buy a new cycle to learn riding?
What's the difference between repeating elections every few years and repeating a referendum after a few years?
extract characters between two commas?
Why airport relocation isn't done gradually?
Finding files for which a command fails
Find all current DNS records
is it necessary to point my domain's dns servers to my hosting company?Set up DNS to switch to secondary DNS on nxdomain in Windows 7DNS domain name not found sending email to postfixSPF Records causing too many DNS lookupsDNS e-mail - how to catch all @mydomain.com e-mails and sent to one specific e-mail account?DNS/website migration with an Exchange serverEmails being routed to old mailboxes, three weeks after changing MX recordsMail server Dns configurationDoes a mail server on an IPv4 address need AAAA records?Is there any way to get all DNS A records worldwide for a specific domain?
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box;
}
I have a domain, its a client's. Their domain needs moving, but the current provider is being difficult/slow in providing details on all the existing DNS records.
Plus I have not been able to get in touch with the mail provider in order to get the records from from to ensure their email continues to work.
Is there a way I can get all the current DNS records so I can replicate them before moving the domain to myself?
dns domain
asked Feb 5 '15 at 11:41
Jake NJake N
184228
add a comment |
I have a domain, its a client's. Their domain needs moving, but the current provider is being difficult/slow in providing details on all the existing DNS records.
Plus I have not been able to get in touch with the mail provider in order to get the records from from to ensure their email continues to work.
Is there a way I can get all the current DNS records so I can replicate them before moving the domain to myself?
dns domain
asked Feb 5 '15 at 11:41
Jake NJake N
184228
add a comment |
I have a domain, its a client's. Their domain needs moving, but the current provider is being difficult/slow in providing details on all the existing DNS records.
Plus I have not been able to get in touch with the mail provider in order to get the records from from to ensure their email continues to work.
Is there a way I can get all the current DNS records so I can replicate them before moving the domain to myself?
dns domain
asked Feb 5 '15 at 11:41
Jake NJake N
184228
I have a domain, its a client's. Their domain needs moving, but the current provider is being difficult/slow in providing details on all the existing DNS records.
Plus I have not been able to get in touch with the mail provider in order to get the records from from to ensure their email continues to work.
Is there a way I can get all the current DNS records so I can replicate them before moving the domain to myself?
dns domain
dns domain
asked Feb 5 '15 at 11:41
Jake NJake N
184228
asked Feb 5 '15 at 11:41
Jake NJake N
184228
asked Feb 5 '15 at 11:41
Jake NJake N
184228
asked Feb 5 '15 at 11:41
Jake NJake N
184228
asked Feb 5 '15 at 11:41
Jake NJake N
184228
184228
add a comment |
add a comment |
3 Answers
3
active
oldest
votes
You could do a lookup on a service like http://viewdns.info/ if the current hosting provider is not willing to give up the details about DNS records.
The functions you will need are found in these two tools:
and
This should get you all the information you need to set up similar records on your new host.
answered Feb 5 '15 at 11:52
KristianKristian
2,837819
1
This host is outside the domain so you probably get only very few hosts and not entire domain
– Romeo Ninov
Feb 5 '15 at 12:10
1
...if zone transfers are allowed at all.
– a CVn
Feb 5 '15 at 12:10
Oddly, that site seems to be convinced that my domain is not "real domain" enough because it's not directly under a TLD, despite it having its own nameservers and even WHOIS entries.
– grawity
Feb 5 '15 at 12:23
It apparently does not even attempt either a zone transfer or a NXT walk, and this answer has the same problem as an earlier (now deleted) answer that one effectively needs to already know the zone database contents in order to make use of it.
– JdeBP
Feb 5 '15 at 12:29
1
It's the totally silent fallback that fooled me when I checked it. Still, going to the self-service management UI of the old provider remains the best answer. (-:
– JdeBP
Feb 5 '15 at 12:59
|
show 2 more comments
For mail:
First, just look up the MX records – those define which servers incoming mail is routed through.
$ dig gmail.com MX
gmail.com. 3412 IN MX 5 gmail-smtp-in.l.google.com.
gmail.com. 3412 IN MX 10 alt1.gmail-smtp-in.l.google.com.
If you must start with an empty domain, you'll receive mail fine as long as you have MX records in place.
Now for the whole domain.
There's a small chance that the domain allows zone transfers, so try that:
Look up the domain's authoritative nameservers:
$ dig gnu.org NS
gnu.org. 298 IN NS ns1.gnu.org.
gnu.org. 298 IN NS ns2.gnu.org.
Windows:
nslookup -q=ns gnu.org
Request a zone transfer from one of them, using the special "AXFR" query type:
$ dig gnu.org AXFR @ns1.gnu.org
gnu.org. 300 IN SOA ns1.gnu.org. hostmaster.gnu.org. 2014031109 3600 120 1209600 3600
gnu.org. 300 IN MX 10 eggs.gnu.org.
gnu.org. 300 IN A 208.118.235.148
alpha.gnu.org. 300 IN A 208.118.235.21
alpha.gnu.org. 300 IN AAAA 2001:4830:134:3::c
anoncvs.gnu.org. 300 IN CNAME savannah.gnu.org.
.....
Windows has a separate command inside
nslookup:
C:> nslookup
> server ns1.gnu.org
> ls -a gnu.org
Another method is NSEC walking, though it works only with DNSSEC-signed domains and only those using regular NSEC (not NSEC3).
- Note, however, if the domain is DNSSEC-signed, then having all subdomains is not enough – you must also obtain the DNSSEC signing keys from the current admins! So the very fact that this method works already makes it useless (except for a last-resort backup).
Anyway. Since NSEC records must (by definition) contain the 'next' existing domain name, you can look up NSEC for the domain root and follow the chain until you go full circle. ldns has a tool for this:
$ ldns-walk -f isc.org
...
backdraft.isc.org. 7200 IN A 149.20.50.14
backupproxy.isc.org. 7200 IN A 149.20.48.23
banana.isc.org. 7200 IN A 149.20.64.69
banana.isc.org. 7200 IN AAAA 2001:4f8:0:2::69
bcn1.isc.org. 3600 IN NS ams.sns-pb.isc.org.
...
Those are the only automated methods. If neither works, you will need to convince the current domain admins to send you the data.
Honestly I cannot even imagine them refusing to give you at least a list of subdomains; doesn't the regular "domain management" panel show them anyway?
answered Feb 5 '15 at 12:07
grawitygrawity
243k37513570
add a comment |
Unless the current provider allows zone transfers (he doesn’t ;)), you cannot reliably get all records for a domain and all its subdomains.
answered Feb 5 '15 at 12:05
Daniel BDaniel B
34.5k76587
If you run the commands from machine inside the domain i.e. defined as host you will get them (this is standard config)
– Romeo Ninov
Feb 5 '15 at 12:07
1
@RomeoNinov I don’t know what you mean by “inside the domain”. I guess you’re confusing it with Active Directory or something like that.
– Daniel B
Feb 5 '15 at 12:09
you have domain, named. example.net. You login in server www.example.net and exec the command. This host is inside the domain!
– Romeo Ninov
Feb 5 '15 at 12:12
@RomeoNinov: No, it’s not. I can name any PCwww.microsoft.com, no problem. That doesn’t mean it gets any more access tomicrosoft.comthan a PC namedwww.example.com.
– Daniel B
Feb 5 '15 at 12:14
We talk about server, which have record in DNS, not name of the server!!!
– Romeo Ninov
Feb 5 '15 at 12:15
|
show 1 more comment
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f873986%2ffind-all-current-dns-records%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
3 Answers
3
active
oldest
votes
3 Answers
3
active
oldest
votes
active
oldest
votes
active
oldest
votes
You could do a lookup on a service like http://viewdns.info/ if the current hosting provider is not willing to give up the details about DNS records.
The functions you will need are found in these two tools:
and
This should get you all the information you need to set up similar records on your new host.
answered Feb 5 '15 at 11:52
KristianKristian
2,837819
1
This host is outside the domain so you probably get only very few hosts and not entire domain
– Romeo Ninov
Feb 5 '15 at 12:10
1
...if zone transfers are allowed at all.
– a CVn
Feb 5 '15 at 12:10
Oddly, that site seems to be convinced that my domain is not "real domain" enough because it's not directly under a TLD, despite it having its own nameservers and even WHOIS entries.
– grawity
Feb 5 '15 at 12:23
It apparently does not even attempt either a zone transfer or a NXT walk, and this answer has the same problem as an earlier (now deleted) answer that one effectively needs to already know the zone database contents in order to make use of it.
– JdeBP
Feb 5 '15 at 12:29
1
It's the totally silent fallback that fooled me when I checked it. Still, going to the self-service management UI of the old provider remains the best answer. (-:
– JdeBP
Feb 5 '15 at 12:59
|
show 2 more comments
You could do a lookup on a service like http://viewdns.info/ if the current hosting provider is not willing to give up the details about DNS records.
The functions you will need are found in these two tools:
and
This should get you all the information you need to set up similar records on your new host.
answered Feb 5 '15 at 11:52
KristianKristian
2,837819
1
This host is outside the domain so you probably get only very few hosts and not entire domain
– Romeo Ninov
Feb 5 '15 at 12:10
1
...if zone transfers are allowed at all.
– a CVn
Feb 5 '15 at 12:10
Oddly, that site seems to be convinced that my domain is not "real domain" enough because it's not directly under a TLD, despite it having its own nameservers and even WHOIS entries.
– grawity
Feb 5 '15 at 12:23
It apparently does not even attempt either a zone transfer or a NXT walk, and this answer has the same problem as an earlier (now deleted) answer that one effectively needs to already know the zone database contents in order to make use of it.
– JdeBP
Feb 5 '15 at 12:29
1
It's the totally silent fallback that fooled me when I checked it. Still, going to the self-service management UI of the old provider remains the best answer. (-:
– JdeBP
Feb 5 '15 at 12:59
|
show 2 more comments
You could do a lookup on a service like http://viewdns.info/ if the current hosting provider is not willing to give up the details about DNS records.
The functions you will need are found in these two tools:
and
This should get you all the information you need to set up similar records on your new host.
answered Feb 5 '15 at 11:52
KristianKristian
2,837819
You could do a lookup on a service like http://viewdns.info/ if the current hosting provider is not willing to give up the details about DNS records.
The functions you will need are found in these two tools:
and
This should get you all the information you need to set up similar records on your new host.
answered Feb 5 '15 at 11:52
KristianKristian
2,837819
answered Feb 5 '15 at 11:52
KristianKristian
2,837819
answered Feb 5 '15 at 11:52
KristianKristian
2,837819
answered Feb 5 '15 at 11:52
KristianKristian
2,837819
2,837819
1
This host is outside the domain so you probably get only very few hosts and not entire domain
– Romeo Ninov
Feb 5 '15 at 12:10
1
...if zone transfers are allowed at all.
– a CVn
Feb 5 '15 at 12:10
Oddly, that site seems to be convinced that my domain is not "real domain" enough because it's not directly under a TLD, despite it having its own nameservers and even WHOIS entries.
– grawity
Feb 5 '15 at 12:23
It apparently does not even attempt either a zone transfer or a NXT walk, and this answer has the same problem as an earlier (now deleted) answer that one effectively needs to already know the zone database contents in order to make use of it.
– JdeBP
Feb 5 '15 at 12:29
1
It's the totally silent fallback that fooled me when I checked it. Still, going to the self-service management UI of the old provider remains the best answer. (-:
– JdeBP
Feb 5 '15 at 12:59
|
show 2 more comments
1
This host is outside the domain so you probably get only very few hosts and not entire domain
– Romeo Ninov
Feb 5 '15 at 12:10
1
...if zone transfers are allowed at all.
– a CVn
Feb 5 '15 at 12:10
Oddly, that site seems to be convinced that my domain is not "real domain" enough because it's not directly under a TLD, despite it having its own nameservers and even WHOIS entries.
– grawity
Feb 5 '15 at 12:23
It apparently does not even attempt either a zone transfer or a NXT walk, and this answer has the same problem as an earlier (now deleted) answer that one effectively needs to already know the zone database contents in order to make use of it.
– JdeBP
Feb 5 '15 at 12:29
1
It's the totally silent fallback that fooled me when I checked it. Still, going to the self-service management UI of the old provider remains the best answer. (-:
– JdeBP
Feb 5 '15 at 12:59
1
1
This host is outside the domain so you probably get only very few hosts and not entire domain
– Romeo Ninov
Feb 5 '15 at 12:10
This host is outside the domain so you probably get only very few hosts and not entire domain
– Romeo Ninov
Feb 5 '15 at 12:10
1
1
...if zone transfers are allowed at all.
– a CVn
Feb 5 '15 at 12:10
...if zone transfers are allowed at all.
– a CVn
Feb 5 '15 at 12:10
Oddly, that site seems to be convinced that my domain is not "real domain" enough because it's not directly under a TLD, despite it having its own nameservers and even WHOIS entries.
– grawity
Feb 5 '15 at 12:23
Oddly, that site seems to be convinced that my domain is not "real domain" enough because it's not directly under a TLD, despite it having its own nameservers and even WHOIS entries.
– grawity
Feb 5 '15 at 12:23
It apparently does not even attempt either a zone transfer or a NXT walk, and this answer has the same problem as an earlier (now deleted) answer that one effectively needs to already know the zone database contents in order to make use of it.
– JdeBP
Feb 5 '15 at 12:29
It apparently does not even attempt either a zone transfer or a NXT walk, and this answer has the same problem as an earlier (now deleted) answer that one effectively needs to already know the zone database contents in order to make use of it.
– JdeBP
Feb 5 '15 at 12:29
1
1
It's the totally silent fallback that fooled me when I checked it. Still, going to the self-service management UI of the old provider remains the best answer. (-:
– JdeBP
Feb 5 '15 at 12:59
It's the totally silent fallback that fooled me when I checked it. Still, going to the self-service management UI of the old provider remains the best answer. (-:
– JdeBP
Feb 5 '15 at 12:59
|
show 2 more comments
For mail:
First, just look up the MX records – those define which servers incoming mail is routed through.
$ dig gmail.com MX
gmail.com. 3412 IN MX 5 gmail-smtp-in.l.google.com.
gmail.com. 3412 IN MX 10 alt1.gmail-smtp-in.l.google.com.
If you must start with an empty domain, you'll receive mail fine as long as you have MX records in place.
Now for the whole domain.
There's a small chance that the domain allows zone transfers, so try that:
Look up the domain's authoritative nameservers:
$ dig gnu.org NS
gnu.org. 298 IN NS ns1.gnu.org.
gnu.org. 298 IN NS ns2.gnu.org.
Windows:
nslookup -q=ns gnu.org
Request a zone transfer from one of them, using the special "AXFR" query type:
$ dig gnu.org AXFR @ns1.gnu.org
gnu.org. 300 IN SOA ns1.gnu.org. hostmaster.gnu.org. 2014031109 3600 120 1209600 3600
gnu.org. 300 IN MX 10 eggs.gnu.org.
gnu.org. 300 IN A 208.118.235.148
alpha.gnu.org. 300 IN A 208.118.235.21
alpha.gnu.org. 300 IN AAAA 2001:4830:134:3::c
anoncvs.gnu.org. 300 IN CNAME savannah.gnu.org.
.....
Windows has a separate command inside
nslookup:
C:> nslookup
> server ns1.gnu.org
> ls -a gnu.org
Another method is NSEC walking, though it works only with DNSSEC-signed domains and only those using regular NSEC (not NSEC3).
- Note, however, if the domain is DNSSEC-signed, then having all subdomains is not enough – you must also obtain the DNSSEC signing keys from the current admins! So the very fact that this method works already makes it useless (except for a last-resort backup).
Anyway. Since NSEC records must (by definition) contain the 'next' existing domain name, you can look up NSEC for the domain root and follow the chain until you go full circle. ldns has a tool for this:
$ ldns-walk -f isc.org
...
backdraft.isc.org. 7200 IN A 149.20.50.14
backupproxy.isc.org. 7200 IN A 149.20.48.23
banana.isc.org. 7200 IN A 149.20.64.69
banana.isc.org. 7200 IN AAAA 2001:4f8:0:2::69
bcn1.isc.org. 3600 IN NS ams.sns-pb.isc.org.
...
Those are the only automated methods. If neither works, you will need to convince the current domain admins to send you the data.
Honestly I cannot even imagine them refusing to give you at least a list of subdomains; doesn't the regular "domain management" panel show them anyway?
answered Feb 5 '15 at 12:07
grawitygrawity
243k37513570
add a comment |
For mail:
First, just look up the MX records – those define which servers incoming mail is routed through.
$ dig gmail.com MX
gmail.com. 3412 IN MX 5 gmail-smtp-in.l.google.com.
gmail.com. 3412 IN MX 10 alt1.gmail-smtp-in.l.google.com.
If you must start with an empty domain, you'll receive mail fine as long as you have MX records in place.
Now for the whole domain.
There's a small chance that the domain allows zone transfers, so try that:
Look up the domain's authoritative nameservers:
$ dig gnu.org NS
gnu.org. 298 IN NS ns1.gnu.org.
gnu.org. 298 IN NS ns2.gnu.org.
Windows:
nslookup -q=ns gnu.org
Request a zone transfer from one of them, using the special "AXFR" query type:
$ dig gnu.org AXFR @ns1.gnu.org
gnu.org. 300 IN SOA ns1.gnu.org. hostmaster.gnu.org. 2014031109 3600 120 1209600 3600
gnu.org. 300 IN MX 10 eggs.gnu.org.
gnu.org. 300 IN A 208.118.235.148
alpha.gnu.org. 300 IN A 208.118.235.21
alpha.gnu.org. 300 IN AAAA 2001:4830:134:3::c
anoncvs.gnu.org. 300 IN CNAME savannah.gnu.org.
.....
Windows has a separate command inside
nslookup:
C:> nslookup
> server ns1.gnu.org
> ls -a gnu.org
Another method is NSEC walking, though it works only with DNSSEC-signed domains and only those using regular NSEC (not NSEC3).
- Note, however, if the domain is DNSSEC-signed, then having all subdomains is not enough – you must also obtain the DNSSEC signing keys from the current admins! So the very fact that this method works already makes it useless (except for a last-resort backup).
Anyway. Since NSEC records must (by definition) contain the 'next' existing domain name, you can look up NSEC for the domain root and follow the chain until you go full circle. ldns has a tool for this:
$ ldns-walk -f isc.org
...
backdraft.isc.org. 7200 IN A 149.20.50.14
backupproxy.isc.org. 7200 IN A 149.20.48.23
banana.isc.org. 7200 IN A 149.20.64.69
banana.isc.org. 7200 IN AAAA 2001:4f8:0:2::69
bcn1.isc.org. 3600 IN NS ams.sns-pb.isc.org.
...
Those are the only automated methods. If neither works, you will need to convince the current domain admins to send you the data.
Honestly I cannot even imagine them refusing to give you at least a list of subdomains; doesn't the regular "domain management" panel show them anyway?
answered Feb 5 '15 at 12:07
grawitygrawity
243k37513570
add a comment |
For mail:
First, just look up the MX records – those define which servers incoming mail is routed through.
$ dig gmail.com MX
gmail.com. 3412 IN MX 5 gmail-smtp-in.l.google.com.
gmail.com. 3412 IN MX 10 alt1.gmail-smtp-in.l.google.com.
If you must start with an empty domain, you'll receive mail fine as long as you have MX records in place.
Now for the whole domain.
There's a small chance that the domain allows zone transfers, so try that:
Look up the domain's authoritative nameservers:
$ dig gnu.org NS
gnu.org. 298 IN NS ns1.gnu.org.
gnu.org. 298 IN NS ns2.gnu.org.
Windows:
nslookup -q=ns gnu.org
Request a zone transfer from one of them, using the special "AXFR" query type:
$ dig gnu.org AXFR @ns1.gnu.org
gnu.org. 300 IN SOA ns1.gnu.org. hostmaster.gnu.org. 2014031109 3600 120 1209600 3600
gnu.org. 300 IN MX 10 eggs.gnu.org.
gnu.org. 300 IN A 208.118.235.148
alpha.gnu.org. 300 IN A 208.118.235.21
alpha.gnu.org. 300 IN AAAA 2001:4830:134:3::c
anoncvs.gnu.org. 300 IN CNAME savannah.gnu.org.
.....
Windows has a separate command inside
nslookup:
C:> nslookup
> server ns1.gnu.org
> ls -a gnu.org
Another method is NSEC walking, though it works only with DNSSEC-signed domains and only those using regular NSEC (not NSEC3).
- Note, however, if the domain is DNSSEC-signed, then having all subdomains is not enough – you must also obtain the DNSSEC signing keys from the current admins! So the very fact that this method works already makes it useless (except for a last-resort backup).
Anyway. Since NSEC records must (by definition) contain the 'next' existing domain name, you can look up NSEC for the domain root and follow the chain until you go full circle. ldns has a tool for this:
$ ldns-walk -f isc.org
...
backdraft.isc.org. 7200 IN A 149.20.50.14
backupproxy.isc.org. 7200 IN A 149.20.48.23
banana.isc.org. 7200 IN A 149.20.64.69
banana.isc.org. 7200 IN AAAA 2001:4f8:0:2::69
bcn1.isc.org. 3600 IN NS ams.sns-pb.isc.org.
...
Those are the only automated methods. If neither works, you will need to convince the current domain admins to send you the data.
Honestly I cannot even imagine them refusing to give you at least a list of subdomains; doesn't the regular "domain management" panel show them anyway?
answered Feb 5 '15 at 12:07
grawitygrawity
243k37513570
For mail:
First, just look up the MX records – those define which servers incoming mail is routed through.
$ dig gmail.com MX
gmail.com. 3412 IN MX 5 gmail-smtp-in.l.google.com.
gmail.com. 3412 IN MX 10 alt1.gmail-smtp-in.l.google.com.
If you must start with an empty domain, you'll receive mail fine as long as you have MX records in place.
Now for the whole domain.
There's a small chance that the domain allows zone transfers, so try that:
Look up the domain's authoritative nameservers:
$ dig gnu.org NS
gnu.org. 298 IN NS ns1.gnu.org.
gnu.org. 298 IN NS ns2.gnu.org.
Windows:
nslookup -q=ns gnu.org
Request a zone transfer from one of them, using the special "AXFR" query type:
$ dig gnu.org AXFR @ns1.gnu.org
gnu.org. 300 IN SOA ns1.gnu.org. hostmaster.gnu.org. 2014031109 3600 120 1209600 3600
gnu.org. 300 IN MX 10 eggs.gnu.org.
gnu.org. 300 IN A 208.118.235.148
alpha.gnu.org. 300 IN A 208.118.235.21
alpha.gnu.org. 300 IN AAAA 2001:4830:134:3::c
anoncvs.gnu.org. 300 IN CNAME savannah.gnu.org.
.....
Windows has a separate command inside
nslookup:
C:> nslookup
> server ns1.gnu.org
> ls -a gnu.org
Another method is NSEC walking, though it works only with DNSSEC-signed domains and only those using regular NSEC (not NSEC3).
- Note, however, if the domain is DNSSEC-signed, then having all subdomains is not enough – you must also obtain the DNSSEC signing keys from the current admins! So the very fact that this method works already makes it useless (except for a last-resort backup).
Anyway. Since NSEC records must (by definition) contain the 'next' existing domain name, you can look up NSEC for the domain root and follow the chain until you go full circle. ldns has a tool for this:
$ ldns-walk -f isc.org
...
backdraft.isc.org. 7200 IN A 149.20.50.14
backupproxy.isc.org. 7200 IN A 149.20.48.23
banana.isc.org. 7200 IN A 149.20.64.69
banana.isc.org. 7200 IN AAAA 2001:4f8:0:2::69
bcn1.isc.org. 3600 IN NS ams.sns-pb.isc.org.
...
Those are the only automated methods. If neither works, you will need to convince the current domain admins to send you the data.
Honestly I cannot even imagine them refusing to give you at least a list of subdomains; doesn't the regular "domain management" panel show them anyway?
answered Feb 5 '15 at 12:07
grawitygrawity
243k37513570
edited Feb 5 '15 at 15:51
answered Feb 5 '15 at 12:07
grawitygrawity
243k37513570
answered Feb 5 '15 at 12:07
grawitygrawity
243k37513570
answered Feb 5 '15 at 12:07
grawitygrawity
243k37513570
243k37513570
add a comment |
add a comment |
Unless the current provider allows zone transfers (he doesn’t ;)), you cannot reliably get all records for a domain and all its subdomains.
answered Feb 5 '15 at 12:05
Daniel BDaniel B
34.5k76587
If you run the commands from machine inside the domain i.e. defined as host you will get them (this is standard config)
– Romeo Ninov
Feb 5 '15 at 12:07
1
@RomeoNinov I don’t know what you mean by “inside the domain”. I guess you’re confusing it with Active Directory or something like that.
– Daniel B
Feb 5 '15 at 12:09
you have domain, named. example.net. You login in server www.example.net and exec the command. This host is inside the domain!
– Romeo Ninov
Feb 5 '15 at 12:12
@RomeoNinov: No, it’s not. I can name any PCwww.microsoft.com, no problem. That doesn’t mean it gets any more access tomicrosoft.comthan a PC namedwww.example.com.
– Daniel B
Feb 5 '15 at 12:14
We talk about server, which have record in DNS, not name of the server!!!
– Romeo Ninov
Feb 5 '15 at 12:15
|
show 1 more comment
Unless the current provider allows zone transfers (he doesn’t ;)), you cannot reliably get all records for a domain and all its subdomains.
answered Feb 5 '15 at 12:05
Daniel BDaniel B
34.5k76587
If you run the commands from machine inside the domain i.e. defined as host you will get them (this is standard config)
– Romeo Ninov
Feb 5 '15 at 12:07
1
@RomeoNinov I don’t know what you mean by “inside the domain”. I guess you’re confusing it with Active Directory or something like that.
– Daniel B
Feb 5 '15 at 12:09
you have domain, named. example.net. You login in server www.example.net and exec the command. This host is inside the domain!
– Romeo Ninov
Feb 5 '15 at 12:12
@RomeoNinov: No, it’s not. I can name any PCwww.microsoft.com, no problem. That doesn’t mean it gets any more access tomicrosoft.comthan a PC namedwww.example.com.
– Daniel B
Feb 5 '15 at 12:14
We talk about server, which have record in DNS, not name of the server!!!
– Romeo Ninov
Feb 5 '15 at 12:15
|
show 1 more comment
Unless the current provider allows zone transfers (he doesn’t ;)), you cannot reliably get all records for a domain and all its subdomains.
answered Feb 5 '15 at 12:05
Daniel BDaniel B
34.5k76587
Unless the current provider allows zone transfers (he doesn’t ;)), you cannot reliably get all records for a domain and all its subdomains.
answered Feb 5 '15 at 12:05
Daniel BDaniel B
34.5k76587
answered Feb 5 '15 at 12:05
Daniel BDaniel B
34.5k76587
answered Feb 5 '15 at 12:05
Daniel BDaniel B
34.5k76587
answered Feb 5 '15 at 12:05
Daniel BDaniel B
34.5k76587
34.5k76587
If you run the commands from machine inside the domain i.e. defined as host you will get them (this is standard config)
– Romeo Ninov
Feb 5 '15 at 12:07
1
@RomeoNinov I don’t know what you mean by “inside the domain”. I guess you’re confusing it with Active Directory or something like that.
– Daniel B
Feb 5 '15 at 12:09
you have domain, named. example.net. You login in server www.example.net and exec the command. This host is inside the domain!
– Romeo Ninov
Feb 5 '15 at 12:12
@RomeoNinov: No, it’s not. I can name any PCwww.microsoft.com, no problem. That doesn’t mean it gets any more access tomicrosoft.comthan a PC namedwww.example.com.
– Daniel B
Feb 5 '15 at 12:14
We talk about server, which have record in DNS, not name of the server!!!
– Romeo Ninov
Feb 5 '15 at 12:15
|
show 1 more comment
If you run the commands from machine inside the domain i.e. defined as host you will get them (this is standard config)
– Romeo Ninov
Feb 5 '15 at 12:07
1
@RomeoNinov I don’t know what you mean by “inside the domain”. I guess you’re confusing it with Active Directory or something like that.
– Daniel B
Feb 5 '15 at 12:09
you have domain, named. example.net. You login in server www.example.net and exec the command. This host is inside the domain!
– Romeo Ninov
Feb 5 '15 at 12:12
@RomeoNinov: No, it’s not. I can name any PCwww.microsoft.com, no problem. That doesn’t mean it gets any more access tomicrosoft.comthan a PC namedwww.example.com.
– Daniel B
Feb 5 '15 at 12:14
We talk about server, which have record in DNS, not name of the server!!!
– Romeo Ninov
Feb 5 '15 at 12:15
If you run the commands from machine inside the domain i.e. defined as host you will get them (this is standard config)
– Romeo Ninov
Feb 5 '15 at 12:07
If you run the commands from machine inside the domain i.e. defined as host you will get them (this is standard config)
– Romeo Ninov
Feb 5 '15 at 12:07
1
1
@RomeoNinov I don’t know what you mean by “inside the domain”. I guess you’re confusing it with Active Directory or something like that.
– Daniel B
Feb 5 '15 at 12:09
@RomeoNinov I don’t know what you mean by “inside the domain”. I guess you’re confusing it with Active Directory or something like that.
– Daniel B
Feb 5 '15 at 12:09
you have domain, named. example.net. You login in server www.example.net and exec the command. This host is inside the domain!
– Romeo Ninov
Feb 5 '15 at 12:12
you have domain, named. example.net. You login in server www.example.net and exec the command. This host is inside the domain!
– Romeo Ninov
Feb 5 '15 at 12:12
@RomeoNinov: No, it’s not. I can name any PC
www.microsoft.com, no problem. That doesn’t mean it gets any more access to microsoft.com than a PC named www.example.com.– Daniel B
Feb 5 '15 at 12:14
@RomeoNinov: No, it’s not. I can name any PC
www.microsoft.com, no problem. That doesn’t mean it gets any more access to microsoft.com than a PC named www.example.com.– Daniel B
Feb 5 '15 at 12:14
We talk about server, which have record in DNS, not name of the server!!!
– Romeo Ninov
Feb 5 '15 at 12:15
We talk about server, which have record in DNS, not name of the server!!!
– Romeo Ninov
Feb 5 '15 at 12:15
|
show 1 more comment
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f873986%2ffind-all-current-dns-records%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
