Dig呼吁简介:
Dig是1个在类Unix呼吁行内容下盘诘DNS包含NS纪录,A纪录,MX纪录等相干动态的器械。
Dig呼吁安置(CentOS):
Default| 1 | yum install bind-utils |
最冗杂的用法:
Default| 123456789101112131415161718192021222324252627282930 | [root@x360 ~]# dig ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.6 <<>>;; global options: printcmd;; Got answer:;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55297;; flags: qr rd ra; QUERY: 1, ANSWER: 13, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION:;. IN NS ;; ANSWER SECTION:. 10845 IN NS c.root-servers.net.. 10845 IN NS h.root-servers.net.. 10845 IN NS m.root-servers.net.. 10845 IN NS i.root-servers.net.. 10845 IN NS a.root-servers.net.. 10845 IN NS l.root-servers.net.. 10845 IN NS b.root-servers.net.. 10845 IN NS j.root-servers.net.. 10845 IN NS e.root-servers.net.. 10845 IN NS g.root-servers.net.. 10845 IN NS k.root-servers.net.. 10845 IN NS d.root-servers.net.. 10845 IN NS f.root-servers.net. ;; Query time: 30 msec;; SERVER: 8.8.8.8#53(8.8.8.8);; WHEN: Sat Oct 12 00:46:09 2013;; MSG SIZE rcvd: 228 |
用DNS搜检某域名下部门A纪录:
Default| 1234567891011121314151617181920 | [root@x360 ~]# dig -t A @8.8.8.8 www.chnlanker.com ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.6 <<>> -t A @8.8.8.8 www.chnlanker.com; (1 server found);; global options: printcmd;; Got answer:;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25575;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION:;www.chnlanker.com. IN A ;; ANSWER SECTION:www.chnlanker.com. 120 IN CNAME www.chnlanker.com.h1.aqb.so.www.chnlanker.com.h1.aqb.so. 60 IN A 220.181.135.218 ;; Query time: 618 msec;; SERVER: 8.8.8.8#53(8.8.8.8);; WHEN: Sat Oct 12 00:56:14 2013;; MSG SIZE rcvd: 92 |
呼吁花式:
Default| 1 | dig @dnsserver name querytype |
如果你设置的dnsserver是1个域名,那么dig会首先经由默认的上连DNS处事器去盘诘对应的IP地址,此后再以设置的dnsserver为上连DNS处事器。
如果你没有设置@dnsserver,那么dig就会顺次应用/etc/resolv.conf里的地址作为上连DNS处事器。
而关于querytype可能设置A/AAAA/PTR/MX/ANY等类型,默认是盘诘A纪录。
1些常用的选项:
-t选项,用来设置盘诘类型,默认环境下是A,也可能设置MX等类型。
-c选项,可能设置和谈类型(class),包含IN(默认)、CH和HS。
-f选项,dig反对从1个文件里读取内容停止批量盘诘,文件内容1举动1个盘诘申请。
-4和-6选项,用于设置仅实用哪1种作为盘诘包传输和谈(IPv4和IPv6)。
-q选项,可能显式设置你要盘诘的域名,何等可能抗御和此外泛滥的参数、选项相混淆,前进了呼吁的可读性。
-x选项,是逆向盘诘选项。可能盘诘IP地址到域名的映射关连。
dig特有的盘诘选项(query option)
dig还有1批“盘诘选项”,这批选项的应用与否,会影响到dig的盘诘体例或输出的后果动态,是以关于这批选项,dig申请显式的在其时背统1的加之1个“+”(加号),何等dig辨认起来会更不便,同时呼吁的可读性也会更强。
dig总共有42个盘诘选项,触及到DNS动态的方方面面,如此多的盘诘选项,本文不1一赘述,在些只挑出常用的几个来解说:
TCP代替UDP
众所周知,DNS盘诘进程中的交互是采用UDP的。如果你希望采用TCP体例,需要何等:
| 12345678910111213141516171819 | [root@x360 ~]# dig +tcp www.chnlanker.com ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.6 <<>> +tcp www.chnlanker.com;; global options: printcmd;; Got answer:;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 59430;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION:;www.chnlanker.com. IN A ;; ANSWER SECTION:www.chnlanker.com. 120 IN CNAME www.chnlanker.com.h1.aqb.so.www.chnlanker.com.h1.aqb.so. 60 IN A 220.181.135.218 ;; Query time: 626 msec;; SERVER: 8.8.8.8#53(8.8.8.8);; WHEN: Sat Oct 12 01:02:09 2013;; MSG SIZE rcvd: 92 |
默认追加域
Default| 12345678910111213141516171819 | [root@x360 ~]# dig +domain=chnlanker.com club ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.6 <<>> +domain=chnlanker.com club;; global options: printcmd;; Got answer:;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30868;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION:;club.chnlanker.com. IN A ;; ANSWER SECTION:club.chnlanker.com. 600 IN CNAME club.chnlanker.com.h1.aqb.so.club.chnlanker.com.h1.aqb.so. 60 IN A 220.181.135.218 ;; Query time: 721 msec;; SERVER: 8.8.8.8#53(8.8.8.8);; WHEN: Sat Oct 12 01:04:59 2013;; MSG SIZE rcvd: 94 |
跟踪dig全进程
dig特别很是着名的1个盘诘选项就是+trace,当应用这个盘诘选项后,dig会从根域盘诘1直跟踪直到盘诘到最落幕果,并将部门进程动态输出出来。
Default| 12345678910111213141516171819202122232425262728293031323334353637383940 | [root@x360 ~]# dig +trace chnlanker.com ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.6 <<>> +trace chnlanker.com;; global options: printcmd. 9611 IN NS c.root-servers.net.. 9611 IN NS h.root-servers.net.. 9611 IN NS m.root-servers.net.. 9611 IN NS i.root-servers.net.. 9611 IN NS a.root-servers.net.. 9611 IN NS l.root-servers.net.. 9611 IN NS b.root-servers.net.. 9611 IN NS j.root-servers.net.. 9611 IN NS e.root-servers.net.. 9611 IN NS g.root-servers.net.. 9611 IN NS k.root-servers.net.. 9611 IN NS d.root-servers.net.. 9611 IN NS f.root-servers.net.;; Received 228 bytes from 8.8.8.8#53(8.8.8.8) in 32 ms com. 172800 IN NS c.gtld-servers.net.com. 172800 IN NS k.gtld-servers.net.com. 172800 IN NS e.gtld-servers.net.com. 172800 IN NS i.gtld-servers.net.com. 172800 IN NS h.gtld-servers.net.com. 172800 IN NS f.gtld-servers.net.com. 172800 IN NS m.gtld-servers.net.com. 172800 IN NS l.gtld-servers.net.com. 172800 IN NS b.gtld-servers.net.com. 172800 IN NS g.gtld-servers.net.com. 172800 IN NS j.gtld-servers.net.com. 172800 IN NS d.gtld-servers.net.com. 172800 IN NS a.gtld-servers.net.;; Received 503 bytes from 192.33.4.12#53(c.root-servers.net) in 60 ms chnlanker.com. 172800 IN NS f1g1ns1.dnspod.net.chnlanker.com. 172800 IN NS f1g1ns2.dnspod.net.;; Received 325 bytes from 192.26.92.30#53(c.gtld-servers.net) in 4430 ms chnlanker.com. 600 IN SOA f1g1ns1.dnspod.net. freednsadmin.dnspod.com. 0 3600 180 1209600 180;; Received 108 bytes from 180.153.10.150#53(f1g1ns1.dnspod.net) in 162 ms |
精简dig输出
1 应用+nocmd的话,可能节流输出dig版本动态。
2 应用+short的话,仅会输出最精简的CNAME动态和A纪录,此外都不会输出。
3 应用+nocomment的话,可能节流输出dig的外貌注解动态。
4 应用+nostat的话,最后的统计动态也不会输出。
[via@蓝客同盟]
