DNS

6. DNS Tools

In Linux, several command-line utilities are available for network diagnostics. When it comes to Domain Name System (DNS) issues, two primary DNS tools stand out: nslookup and dig. Understanding how to use them is crucial for any DNS troubleshooting on a Linux DNS server or client.

Using nslookup for Basic DNS Queries

The nslookup (name server lookup) tool is a classic utility for querying DNS servers to obtain domain name or IP address mapping information. While it is sometimes considered deprecated in favor of dig, it remains a quick and easy tool for simple lookups.

To find the IP address for a domain like www.google.com, you can run:

pete@icebox:~$ nslookup www.google.com
Server:         127.0.1.1
Address:        127.0.1.1#53

Non-authoritative answer:
Name:   www.google.com
Address: 216.58.192.4

In this output, Server and Address show the DNS server that answered the query. The Non-authoritative answer means the server provided a cached result rather than querying the authoritative source directly. Name and Address show the resolved IP address for the domain.

Advanced DNS Troubleshooting with dig

The dig (domain information groper) command is a powerful and flexible tool for interrogating DNS name servers. It provides more detailed information than nslookup, making it the preferred choice for serious DNS troubleshooting.

Here is an example of using the dig command:

pete@icebox:~$ dig www.google.com

; <<>> DiG 9.9.5-3-Ubuntu <<>> www.google.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42376
;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; MBZ: 0005 , udp: 512
;; QUESTION SECTION:
;www.google.com.                        IN      A

;; ANSWER SECTION:
www.google.com.         5       IN      A       74.125.239.147
www.google.com.         5       IN      A       74.125.239.144
www.google.com.         5       IN      A       74.125.239.146
www.google.com.         5       IN      A       74.125.239.145
www.google.com.         5       IN      A       74.125.239.148

;; Query time: 27 msec
;; SERVER: 127.0.1.1#53(127.0.1.1)
;; WHEN: Sun Feb 07 10:14:00 PST 2016
;; MSG SIZE  rcvd: 123

The output from dig is organized into sections:

  • QUESTION SECTION: Shows the query that was sent. Here, we asked for an A (address) record for www.google.com.
  • ANSWER SECTION: Displays the answer received from the DNS server. In this case, Google has multiple IP addresses associated with its domain.
  • Statistics: The final section provides metadata about the query, such as the query time and the server that responded.

Because of its detailed output and flexibility, dig is an indispensable utility for anyone managing or troubleshooting network services on Linux.

Sign in to save your learning progress

Sign in

Exercises

To gain more experience with Linux networking utilities, consider trying the following hands-on lab:

  1. Examine Network Interface Settings with ethtool in Linux - Learn to use the ethtool command to examine and manage network interface settings, including viewing and setting interface speed and duplex, and analyzing link modes to troubleshoot physical layer network issues.

This lab will help you apply the concepts in real scenarios and build confidence with managing network interfaces.

Login to Practice on LabEx

Quiz

What tool is used to get detailed information about DNS name servers? Please answer using only lowercase English characters.