【笔记】Nslookup学习笔记

发表于 更新于 分类于 阅读次数:

前言

nslookup(意为name server lookup)是一个网络管理命令行界面工具,用户可以利用nslookup查询域名的ip地址以及ip地址所对应的域名,例如在命令行界面输入nslookup以及网址后,nslookup会发送命令给电脑所连接的域名服务器,随后便能得出网址所映射的IP地址。nslookup的Linux版本由Andrew Cherenson编写。ReactOS版本由Lucas Suggs开发的,并采用GNU通用公共许可证授权。(维基百科

通过nslookup终端查询DNS解析

进入nslookup终端

1
nslookup

通过nslookup终端查询

查询名称服务器

set type=:指定查询类型
.:查询可以解析根域名的名称服务器

1
2
> set type=ns
> .

Non-authoritative:非权威服务器的回复
Authoritative:权威服务器的回复

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
Non-authoritative answer:
.	nameserver = c.root-servers.net.
.	nameserver = b.root-servers.net.
.	nameserver = k.root-servers.net.
.	nameserver = f.root-servers.net.
.	nameserver = e.root-servers.net.
.	nameserver = d.root-servers.net.
.	nameserver = h.root-servers.net.
.	nameserver = g.root-servers.net.
.	nameserver = a.root-servers.net.
.	nameserver = j.root-servers.net.
.	nameserver = i.root-servers.net.
.	nameserver = l.root-servers.net.
.	nameserver = m.root-servers.net.

Authoritative answers can be found from:
a.root-servers.net	internet address = 198.41.0.4
b.root-servers.net	internet address = 170.247.170.2
c.root-servers.net	internet address = 192.33.4.12
d.root-servers.net	internet address = 199.7.91.13
e.root-servers.net	internet address = 192.203.230.10
f.root-servers.net	internet address = 192.5.5.241
g.root-servers.net	internet address = 192.112.36.4
h.root-servers.net	internet address = 198.97.190.53
i.root-servers.net	internet address = 192.36.148.17
j.root-servers.net	internet address = 192.58.128.30
k.root-servers.net	internet address = 193.0.14.129
l.root-servers.net	internet address = 199.7.83.42
m.root-servers.net	internet address = 202.12.27.33
a.root-servers.net	has AAAA address 2001:503:ba3e::2:30
b.root-servers.net	has AAAA address 2801:1b8:10::b
c.root-servers.net	has AAAA address 2001:500:2::c
d.root-servers.net	has AAAA address 2001:500:2d::d
e.root-servers.net	has AAAA address 2001:500:a8::e
f.root-servers.net	has AAAA address 2001:500:2f::f
h.root-servers.net	has AAAA address 2001:500:1::53
i.root-servers.net	has AAAA address 2001:7fe::53
j.root-servers.net	has AAAA address 2001:503:c27::2:30
k.root-servers.net	has AAAA address 2001:7fd::1
l.root-servers.net	has AAAA address 2001:500:9f::42
m.root-servers.net	has AAAA address 2001:dc3::35
用指定名称服务器查询名称服务器

server <ip>:向指定名称服务器进行查询
set type=:指定查询类型
.:查询可以解析com.域名的名称服务器

1
2
3
> server 170.247.170.2
> set type=ns
> com.

gtld:通用顶级域名(Generic Top Level Domain)

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
Non-authoritative answer:
*** Can't find com.: No answer

Authoritative answers can be found from:
com	nameserver = j.gtld-servers.net.
com	nameserver = m.gtld-servers.net.
com	nameserver = d.gtld-servers.net.
com	nameserver = b.gtld-servers.net.
com	nameserver = g.gtld-servers.net.
com	nameserver = c.gtld-servers.net.
com	nameserver = a.gtld-servers.net.
com	nameserver = f.gtld-servers.net.
com	nameserver = h.gtld-servers.net.
com	nameserver = i.gtld-servers.net.
com	nameserver = e.gtld-servers.net.
com	nameserver = k.gtld-servers.net.
com	nameserver = l.gtld-servers.net.
m.gtld-servers.net	internet address = 192.55.83.30
l.gtld-servers.net	internet address = 192.41.162.30
k.gtld-servers.net	internet address = 192.52.178.30
j.gtld-servers.net	internet address = 192.48.79.30
i.gtld-servers.net	internet address = 192.43.172.30
h.gtld-servers.net	internet address = 192.54.112.30
g.gtld-servers.net	internet address = 192.42.93.30
f.gtld-servers.net	internet address = 192.35.51.30
e.gtld-servers.net	internet address = 192.12.94.30
d.gtld-servers.net	internet address = 192.31.80.30
c.gtld-servers.net	internet address = 192.26.92.30
b.gtld-servers.net	internet address = 192.33.14.30
a.gtld-servers.net	internet address = 192.5.6.30
m.gtld-servers.net	has AAAA address 2001:501:b1f9::30
l.gtld-servers.net	has AAAA address 2001:500:d937::30

查询A记录

1
2
> set type=a
> b.root-servers.net.
1
2
3
Non-authoritative answer:
Name:	b.root-servers.net
Address: 170.247.170.2

查询AAAA记录

1
2
> set type=aaaa
> b.root-servers.net.
1
b.root-servers.net	has AAAA address 2801:1b8:10::b

直接查询DNS解析

查询A记录

  • 使用默认DNS服务器

<domain>:域名

1
nslookup <domain>

<dns_ip>:指定DNS服务器IP地址

1
nslookup <domain> <dns_ip>

查询其他记录

  • Windows上使用-qt=指定记录类型
  • Linux和MacOS上使用-querytype=-type=指定记录类型

查询CNAME记录

1
nslookup -qt=CNAME <domain>

查询AAAA记录

1
nslookup -qt=AAAA <domain>

查询MX邮箱服务器记录

1
nslookup -qt=MX <domain>

查询NS名称服务器记录

1
nslookup -qt=NS <domain>

逆向解析记录

  • 根据IP地址查询域名
1
nslookup -qt=PTR <ip>

查询域名的缓存

1
nslookup -d <domain>

完成

参考文献

哔哩哔哩——千锋教育网络安全学院
知乎——国科云
CSDN——if200
哔哩哔哩——技术蛋老师