DNS: Difference between revisions
From DWIKI
m →Tools Tag: wikieditor |
m →Links Tag: wikieditor |
||
| (8 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
= Links = | = Links = | ||
*[https://www.rfc-editor.org/rfc/rfc1034 RFC 1034] | |||
*[http://www.oreilly.com/catalog/dns4/toc.html The O'Reilly Bind Book] | *[http://www.oreilly.com/catalog/dns4/toc.html The O'Reilly Bind Book] | ||
*[http://www.dnsreport.com DNS Check] | *[http://www.dnsreport.com DNS Check] | ||
*[http://www.dns.net/dnsrd/ http://www.dns.net/dnsrd/] | *[http://www.dns.net/dnsrd/ http://www.dns.net/dnsrd/] | ||
| Line 12: | Line 12: | ||
*[https://docstore.mik.ua/orelly/networking_2ndEd/dns/ch09_04.htm DNS subdomains] | *[https://docstore.mik.ua/orelly/networking_2ndEd/dns/ch09_04.htm DNS subdomains] | ||
*[https://dnsinstitute.com/documentation/dnssec-guide/ch03s05.html What's EDNS All About (And Why Should I Care)?] | *[https://dnsinstitute.com/documentation/dnssec-guide/ch03s05.html What's EDNS All About (And Why Should I Care)?] | ||
*[https://www.ctrl.blog/entry/homenet-domain-name.html What domain name to use for your home network] | |||
==DNS chcecks== | ==DNS chcecks== | ||
*[http://www.webdnstools.com/dnstools/domain_check Domain Check] | *[http://www.webdnstools.com/dnstools/domain_check Domain Check] | ||
*[https://mxtoolbox.com/dnscheck.aspx mtoolbox dns check] | *[https://mxtoolbox.com/dnscheck.aspx mtoolbox dns check] | ||
*[https://dnsviz.net/ dnviz] | *[https://dnsviz.net/ dnviz] | ||
=HOWTO= | |||
==Get TTL== | |||
dig example.com any | |||
=Documentation= | =Documentation= | ||
==Zone files== | ==Zone files== | ||
*[https://arstechnica.com/gadgets/2020/08/understanding-dns-anatomy-of-a-bind-zone-file/ Anatomy of a bind zone file] | *[https://arstechnica.com/gadgets/2020/08/understanding-dns-anatomy-of-a-bind-zone-file/ Anatomy of a bind zone file] | ||
===SOA record=== | |||
ns1.example.com admin.example.com 2013022001 86400 7200 604800 300 | |||
* The primary name server for the domain, which is ns1.dnsimple.com or the first name server in the vanity name server list. | |||
* The responsible party for the domain: admin.dnsimple.com. | |||
* A timestamp that changes whenever you update your domain. | |||
* The number of seconds before the zone should be refreshed. | |||
* The number of seconds before a failed refresh should be retried. | |||
* The upper limit in seconds before a zone is considered no longer authoritative. | |||
* The negative result TTL (for example, how long a resolver should consider a negative result for a subdomain to be valid before retrying). | |||
==Glue records== | ==Glue records== | ||
*[https://ns1.com/blog/glue-records-and-dedicated-dns Glue Records and Dedicated DNS] | *[https://ns1.com/blog/glue-records-and-dedicated-dns Glue Records and Dedicated DNS] | ||
| Line 44: | Line 59: | ||
*dnsping | *dnsping | ||
*dnsdiag | *dnsdiag | ||
*[https://dnsviz.net dnzviz] | |||
= FAQ = | = FAQ = | ||
| Line 51: | Line 67: | ||
dig @m.root-servers.net. ns . | dig @m.root-servers.net. ns . | ||
== Find | == Find nameserver handling reverse (PTR) == | ||
dig -x 10.11.12.13 | dig -x 10.11.12.13 ns | ||
== Wildcard record == | == Wildcard record == | ||
Latest revision as of 10:52, 1 May 2026
Links
- The O'Reilly Bind Book
- DNS Check
- http://www.dns.net/dnsrd/
- Dig HOWTO
- DNS tips&tricks
- DNS entropy
- Configuring reverse dns
- DNS subdomains
- What's EDNS All About (And Why Should I Care)?
- What domain name to use for your home network
DNS chcecks
HOWTO
Get TTL
dig example.com any
Documentation
Zone files
SOA record
ns1.example.com admin.example.com 2013022001 86400 7200 604800 300
- The primary name server for the domain, which is ns1.dnsimple.com or the first name server in the vanity name server list.
- The responsible party for the domain: admin.dnsimple.com.
- A timestamp that changes whenever you update your domain.
- The number of seconds before the zone should be refreshed.
- The number of seconds before a failed refresh should be retried.
- The upper limit in seconds before a zone is considered no longer authoritative.
- The negative result TTL (for example, how long a resolver should consider a negative result for a subdomain to be valid before retrying).
Glue records
Software
BIND
Maradns
A nice caching DNS.
Tools
dnstop
Show what is being looked up
dnstop -l 3 eth0
and then hit 3
FAQ
Get hints file
dig @m.root-servers.net. ns .
Find nameserver handling reverse (PTR)
dig -x 10.11.12.13 ns
Wildcard record
;seems unwise to use CNAMES for this @ IN A 10.0.0.1 * IN A 10.0.0.1
DNS amplification test
dig +short +tries=1 +time=2 test.openresolver.com TXT @$ip
Local NS list does not match Parent NS list
Probably a slave/secundary server out of sync
Terms
SOA
Start Of Authority
