Is there any way to query a dns server to find out all the domains it is the authoritative server? [all domains it has configured?]
(I can use dig or any other tool)
Asked
Active
Viewed 1,290 times
1
-
It depends, bind views or ACLS could very possibly exclude you from seeing some of the domains the server is responsible for. – NickW Mar 07 '14 at 12:54
-
You might try an axfr if it's allowed. – Roman Grazhdan Mar 07 '14 at 12:57
-
Roman, how will that help? Do you plan to try AXFRs of every registered domain, and see which ones it responds with? – MadHatter Mar 07 '14 at 12:59
-
Aww. Been thinking about my current setup where I control the DNS server. – Roman Grazhdan Mar 07 '14 at 13:18
-
All of the above comments suggesting ways are *wrong*. You need to get ahold of the DNS server configuration to determine this, so the answer is simply **no** in any practical sense. Contact the server administrator and ask for it, care of DNS services, 2204 Fat Chance Ave. – milli Mar 08 '14 at 20:37
1 Answers
7
Is there any way to query a dns server to find out all the domains it is the authoritative server?
Short of doing millions and millions of queries in a brute-force style, no there is no way to do this.
If you know one of the domains, and if they have enabled axfr for your IP, you can get a list of records for a single domain.
EEAA
- 109,363
- 18
- 175
- 245