11.8.6 Use nslookup

Questions and Answers

What are root hints used for in DNS server configuration?

• To increase the response time of DNS queries
• To store all DNS records for a domain
• To create backups of DNS database entries
• To provide IP addresses of root-level DNS servers (correct)

When the DNS server is not authoritative for a domain, what action does it take?

• It forwards the query to a root-level name server. (correct)
• It ignores the request entirely.
• It queries the nearest cache server for results.
• It returns an error message to the client.

How does a DNS server obtain the IP address of the DNS server authoritative for a domain?

• By directly querying the client machine
• By consulting the local DNS cache
• By listing it in the DNS configuration file
• By receiving a direction from a root-level server (correct)

What command is used to perform DNS record lookups in the demonstration?

nslookup (A)

What happens after the DNS server receives a resolved name from the authoritative server?

It sends the resolved name back to the workstation. (A)

What command is used to check the IP configuration of a Windows workstation?

ipconfig /all (C)

In nslookup, what is the purpose of passive mode?

To send a single query to resolve a specific host name (C)

What would be the result of entering 'nslookup demo.local' in nslookup?

It will resolve the host name using the DNS server specified (B)

What indicates that the DNS server is not authoritative for a particular zone when using nslookup?

The answer is labeled as 'Non-authoritative answer' (C)

What information is displayed when you enter 'nslookup' alone at the command prompt?

The host name and address of the DNS server used (B)

What IP address is the DNS server set to in the example provided?

192.168.1.10 (D)

What would happen if you entered a domain that the DNS server is not authoritative for?

It can still resolve the name to an IP address (C)

Which command exits nslookup after using its interactive mode?

exit (A)

Flashcards are hidden until you start studying

Study Notes

Introduction to nslookup

• nslookup is a command-line utility used to test name resolution with a DNS server.
• Available on both Windows and Linux.

Verifying IP Address Settings

• To verify IP configuration, use ipconfig /all in the command prompt.
• This command displays the system's IP address settings, including the DNS server address.

Using nslookup

• Passive Mode: Enter nslookup followed by the hostname you want to resolve (e.g., nslookup demo.local). This sends a query to the DNS server and displays the response.
• Interactive Mode: Run nslookup to enter an interactive mode where you can input multiple hostnames and receive continuous resolution results.
  • Exit interactive mode with exit.

Authoritative Lookup

• An authoritative DNS server is responsible for a specific domain.
• In the example, the DNS server dc1.demo.local (192.168.1.10) is authoritative for the demo.local domain.
• nslookup can be used to query the DNS server for hostnames within its authoritative zone (e.g., nslookup dc2.demo.local).

Non-Authoritative Lookup

• A DNS server can also resolve hostnames outside its authoritative zone using root hints.
• Root hints are preconfigured IP addresses of root-level DNS servers on the internet, used for name resolution in other domains.
• When a DNS server is not authoritative, it leverages root hints to forward queries to the appropriate server.
  • The DNS server in the example successfully resolved testout.com using root hints and communication with the DNS server authoritative for that domain.

Summary

• You can use nslookup to perform both authoritative and non-authoritative DNS record lookups.
• In a non-authoritative lookup, the DNS server utilizes root hints to find the appropriate DNS server responsible for that domain.