LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices

Reply
 
Search this Thread
Old 04-23-2011, 08:35 AM   #1
windbadboy
LQ Newbie
 
Registered: Jul 2009
Posts: 25

Rep: Reputation: 0
Question Why Can't I get an authoritative answer from a DNS server.


When I type 'nslookup some site',the result I always get is a non-authoritative answer.
How can I get an authoritative answer?
 
Old 04-23-2011, 09:06 AM   #2
winning
Member
 
Registered: Apr 2011
Posts: 70

Rep: Reputation: 13
Hello. I believe that you receive a non-authoritative answer because, by default, nslookup asks your nameserver to recurse in order to resolve your query and because your nameserver is not an authority for the name you are asking it about. You can get an authoritative answer by querying the authoritative nameserver for the domain you are interested in. Finding the authoritative nameserver (through nslookup alone) can be tricky, I think (I've had some interesting experiences in this sense with www.redhat.com).

Last edited by winning; 04-23-2011 at 09:09 AM.
 
Old 04-23-2011, 09:20 AM   #3
winning
Member
 
Registered: Apr 2011
Posts: 70

Rep: Reputation: 13
Here is an example for www.linuxquestions.org:

Code:
> server 8.8.8.8
Default server: 8.8.8.8
Address: 8.8.8.8#53
> www.linuxquestions.org
Server:		8.8.8.8
Address:	8.8.8.8#53

Non-authoritative answer:
Name:	www.linuxquestions.org
Address: 75.126.162.205
> set querytype=soa
> www.linuxquestions.org
Server:		8.8.8.8
Address:	8.8.8.8#53

Non-authoritative answer:
*** Can't find www.linuxquestions.org: No answer

Authoritative answers can be found from:
linuxquestions.org
	origin = ns1.mydyndns.org
	mail addr = zone-admin.dyndns.com
	serial = 2008022056
	refresh = 10800
	retry = 1800
	expire = 604800
	minimum = 1800
> lserver ns1.mydyndns.org
Default server: ns1.mydyndns.org
Address: 204.13.248.76#53
Default server: ns1.mydyndns.org
Address: 2600:2001::76#53
> set querytype=a
> www.linuxquestions.org
Server:		ns1.mydyndns.org
Address:	204.13.248.76#53

Name:	www.linuxquestions.org
Address: 75.126.162.205
 
Old 04-23-2011, 09:27 AM   #4
winning
Member
 
Registered: Apr 2011
Posts: 70

Rep: Reputation: 13
Here is another example, this time for www.redhat.com:

Code:
> server 8.8.8.8
Default server: 8.8.8.8
Address: 8.8.8.8#53
> www.redhat.com
Server:		8.8.8.8
Address:	8.8.8.8#53

Non-authoritative answer:
www.redhat.com	canonical name = www.redhat.com.edgekey.net.
www.redhat.com.edgekey.net	canonical name = www.redhat.com.edgekey.net.globalredir.akadns.net.
www.redhat.com.edgekey.net.globalredir.akadns.net	canonical name = e86.b.akamaiedge.net.
Name:	e86.b.akamaiedge.net
Address: 95.100.64.112
> set querytype=soa
> www.redhat.com
Server:		8.8.8.8
Address:	8.8.8.8#53

Non-authoritative answer:
www.redhat.com	canonical name = www.redhat.com.edgekey.net.
www.redhat.com.edgekey.net	canonical name = www.redhat.com.edgekey.net.globalredir.akadns.net.
www.redhat.com.edgekey.net.globalredir.akadns.net	canonical name = e86.b.akamaiedge.net.

Authoritative answers can be found from:
b.akamaiedge.net
	origin = n0b.akamaiedge.net
	mail addr = hostmaster.akamai.com
	serial = 1303568497
	refresh = 1000
	retry = 1000
	expire = 1000
	minimum = 1800
> lserver n0b.akamaiedge.net
Default server: n0b.akamaiedge.net
Address: 213.198.95.144#53
> set querytype=a
> e86.b.akamaiedge.net
Server:		n0b.akamaiedge.net
Address:	213.198.95.144#53

Name:	e86.b.akamaiedge.net
Address: 95.100.64.112
I followed this up by:
Code:
$ nc 95.100.64.112 80
GET / HTTP/1.1
Host: www.redhat.com
User-Agent: winning
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
	<title>redhat.com | The World's Open Source Leader</title>
.. so e86.b.akamaiedge.net at least appears to be the canonical name for www.redhat.com, which I was initially interested in.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Why Can't I get an authoritative answer from a DNS server. windbadboy General 1 04-23-2011 08:45 AM
Bind DNS Server - answer a few records for another domain? humbletech99 Linux - Server 15 06-21-2010 02:15 AM
Authoritative dns behind firewall? hazmatt20 Linux - Server 1 03-04-2007 03:09 PM
What makes a DNS server authoritative. Strider22 Linux - Networking 1 11-17-2005 01:06 PM
authoritative dns how to viperusn Linux - Networking 7 03-21-2004 11:49 PM


All times are GMT -5. The time now is 09:42 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration