Shakiba Moshiri
  • Shakiba Moshiri (شکیبا مشیری)
  • opt
    • high traffic site optimization
      • infrastructure check
      • infrastructure test
  • tools
    • Cryptsetup
      • Container encryption using cryptsetup
    • curly
      • ftp
      • ssl
      • http
      • dns
      • ip
      • email
    • SSH
      • ssh password-less login
        • Untitled
    • volumes and FS
      • installing Gluster fs on Ubuntu 18.04 server
      • Accessing Gluster FS from the client machine
  • CDN
    • How does a CDN work
  • Server Panel
  • DirectAdmin
    • DirectAdmin through a reverse proxy
  • Web Server
    • Nginx
      • Live Steaming with Nginx and FFMPEG
  • Security
  • Container
    • Docker Networking 101
      • why docker networking is important?
      • type of networking in docker
    • Docker
      • How to run gitlab-runner with docker
      • using vim inside any container without installing it
      • Cannot connect to the Docker daemon at unix:///var/run/docker.sock
      • moving docker images around using ssh and pipe
      • How can I make docker-compose pull images using a socks5 proxy?
  • Stack Overflow
  • Github
  • vmware
    • tools
      • how to install vmware CLI govc on Linux
  • Windows
    • How to Erase a Recovery Partition in Windows
Powered by GitBook
On this page
  • dns
  • root
  • public
  • trace

Was this helpful?

  1. tools
  2. curly

dns

dns troubleshooting with curly

dns

 -D | --dns             DNS actions ...
    |                   root: check on root DNS servers
    |                   public: check on public DNS servers e.g 1.1.1.1
    |                   trace: trace from a public DNS server to main server
    | --dc              dns servers to use, default is: 1.1.1.1
    |                   or a file containing some DNS servers ( IPs | names )

actions for DNS

  • root

  • public ( or pub)

  • trace

root

check ANY record from the root DNS server of a domain

root[0]shakiba:/pp# curly --dns root -d derak.cloud

mNS server A.NIC.CLOUD
;derak.cloud.                   IN      ANY
derak.cloud.            3600    IN      NS      4.top.derak.cloud.
derak.cloud.            3600    IN      NS      1.top.derak.cloud.
derak.cloud.            3600    IN      NS      2.top.derak.cloud.
derak.cloud.            3600    IN      NS      3.top.derak.cloud.
4.top.derak.cloud.      3600    IN      A       159.69.229.229
3.top.derak.cloud.      3600    IN      A       178.62.222.218
2.top.derak.cloud.      3600    IN      A       5.145.112.112
1.top.derak.cloud.      3600    IN      A       5.145.115.115

exit 0
root[0]shakiba:/pp#

public

simply check the A record(s)

root[0]shakiba:/pp# curly --dns pub -d derak.cloud
DNS server 1.1.1.1
;derak.cloud.                   IN      A
derak.cloud.            10      IN      A       116.202.90.178
derak.cloud.            10      IN      A       159.69.229.226

exit 0
root[0]shakiba:/pp#

or when we have a custom DNS server and we want to check from there

for example we want to check derak.could on cloud root DNS servers

first we find root DNS servers for cloud TLD

root[0]shakiba:/pp# whois cloud | grep nserver
nserver:      A.NIC.CLOUD 2001:dcd:1:0:0:0:0:10 37.209.192.10
nserver:      B.NIC.CLOUD 2001:dcd:2:0:0:0:0:10 37.209.194.10
nserver:      C.NIC.CLOUD 2001:dcd:3:0:0:0:0:10 37.209.196.10
nserver:      D.NIC.CLOUD 2001:dcd:4:0:0:0:0:10 37.209.198.10

exit 0
root[0]shakiba:/pp#

now that we have DNS servers we can query them directly 

root[0]shakiba:/pp# curly --dns public -d derak.cloud --dc A.NIC.CLOUD
DNS server A.NIC.CLOUD
;derak.cloud.                   IN      A
derak.cloud.            3600    IN      NS      3.top.derak.cloud.
derak.cloud.            3600    IN      NS      4.top.derak.cloud.
derak.cloud.            3600    IN      NS      1.top.derak.cloud.
derak.cloud.            3600    IN      NS      2.top.derak.cloud.
4.top.derak.cloud.      3600    IN      A       159.69.229.229
3.top.derak.cloud.      3600    IN      A       178.62.222.218
2.top.derak.cloud.      3600    IN      A       5.145.112.112
1.top.derak.cloud.      3600    IN      A       5.145.115.115

exit 0
root[0]shakiba:/pp#

trace

As the name implies , it will trace from a public DNS server down to the authoritative DNS server

root[0]shakiba:/pp# # 1.1.1.1 has been set as default
root[0]shakiba:/pp# curly --dns trace -d derak.cloud

; <<>> DiG 9.11.3-1ubuntu1.13-Ubuntu <<>> +trace derak.cloud @1.1.1.1
;; global options: +cmd
.                       512061  IN      NS      a.root-servers.net.
.                       512061  IN      NS      b.root-servers.net.
.                       512061  IN      NS      c.root-servers.net.
.                       512061  IN      NS      d.root-servers.net.
.                       512061  IN      NS      e.root-servers.net.
.                       512061  IN      NS      f.root-servers.net.
.                       512061  IN      NS      g.root-servers.net.
.                       512061  IN      NS      h.root-servers.net.
.                       512061  IN      NS      i.root-servers.net.
.                       512061  IN      NS      j.root-servers.net.
.                       512061  IN      NS      k.root-servers.net.
.                       512061  IN      NS      l.root-servers.net.
.                       512061  IN      NS      m.root-servers.net.
.                       512061  IN      RRSIG   NS 8 0 518400 20201122170000 20201109160000 26116 . rRXF2X1b6Iz65JPoyl4IJZqicqa+Sn7lPxGqa8ONkqEVDryyfhtlzbul btEqZVp+MH9qD4xtjz7fxmHtxeS1s9rmhKrRC3E+QfOXq5HWPS6AORp1 vUdqUkD8yVoNBb+WEAr2QoPa6O2Lb+Jc2hxuqf5Erg0MOnEctAFo9LSD fBaObZ7io8cLmePw8U1UMWz5gslOc56VyvUnD7tAzGH36Qyficmf4BRO AhKPWhLzVWjurljHCYGVqm/TfpJOWQgtQhXqaT5p22IQOxqCCAmit1j5 5psxLw1L+HeYbEGWFgy3vrBOB75kzxPKyG/1vPyqptOvCTTAdJ84NoOW sMfaTA==
;; Received 525 bytes from 1.1.1.1#53(1.1.1.1) in 124 ms

cloud.                  172800  IN      NS      a.nic.cloud.
cloud.                  172800  IN      NS      b.nic.cloud.
cloud.                  172800  IN      NS      c.nic.cloud.
cloud.                  172800  IN      NS      d.nic.cloud.
cloud.                  86400   IN      DS      49804 8 1 04B537D00C915E782432584948550BBB39FF88A0
cloud.                  86400   IN      DS      49804 8 2 7781C5D4ECF4BD0845B49D29B2E79BD1DA1865725096FAEB2D0393B7 8FD1049C
cloud.                  86400   IN      RRSIG   DS 8 1 86400 20201122170000 20201109160000 26116 . Eo8qQmREec9n+d0H5Mvoa8Hud75iFXIVBxmDAs4MrLlvtFayB9/Xjujy +9xXRQudhDFZq7WR214LQ5KVitXOtBY+xqiBOT4s4tVq40BUphlkxug1 f2jijtCMh1LZ+f3CpETi70tTnpMdbt1EnJYCJXevfyDr7KBNlOdObT8N mc+cYUMEYgKK2AyTiH/8BLzGG0EsrPCkVEf0pmXWQLQ5bDulDVeyh7Tu R+UWXiRONdH5UVPOpdz3D5mScjPMCqvvuqTvKcZZl19YpbU6eJtuAw81 mP8bFXHZf8oaZtGiIt3+eYaKj04yTPT5vSuHATBU31JBlyyWJuyel9v1 cQ50MA==
;; Received 655 bytes from 199.7.91.13#53(d.root-servers.net) in 248 ms

derak.cloud.            3600    IN      NS      1.top.derak.cloud.
derak.cloud.            3600    IN      NS      2.top.derak.cloud.
derak.cloud.            3600    IN      NS      3.top.derak.cloud.
derak.cloud.            3600    IN      NS      4.top.derak.cloud.
k6nnfqiccqt79kvb1rieurknvn2tfr6a.cloud. 1800 IN NSEC3 1 1 1 AA821FC0 K6NVREQAGUJ98DPBKOPAMJMA76MA1SJ4  NS SOA RRSIG DNSKEY NSEC3PARAM
k6nnfqiccqt79kvb1rieurknvn2tfr6a.cloud. 1800 IN RRSIG NSEC3 8 2 1800 20201209114825 20201109110836 2538 cloud. KIlL2tXIJrKgOdI56cX41TkSTTr0H6pZnIBfaVh+rFVCWDs2ryDQQVy+ 8JRzd1PjRl0HFL9RAxxScOZbXg0NLEvZHj+JNOLebDf0nBj1sqDXrgji YH9T44KcmK/Poivwir4nXU6zxpCn4ZqPeSdNfFeLQLU431UpVXNLXdEg NHPwP/hraaxD/hSPkZHLB2Ky86C8/mayPOlP845rwn6uIQ==
36oq22mv8mju4ng57q43thi0rkp94cbg.cloud. 1800 IN NSEC3 1 1 1 AA821FC0 36S7KD1R3CF9NTRHR79LSB3L2V5UV0C6  NS DS RRSIG
36oq22mv8mju4ng57q43thi0rkp94cbg.cloud. 1800 IN RRSIG NSEC3 8 2 1800 20201209155331 20201109154316 2538 cloud. m1m/0zVQ2ur+puTPlVHkHbyYwS7BdFFaYkn2VRGRzewHD7oPiKfd+W33 TRekTLc+fGZrI42/ezmUMOi+bwXXhyDCgfdPSsjGPz30cLMuBL86cTHV yVym6LTbUxoFqiP5UKWrSJLKPkBjxdXaYi3NTpVuPrx5A814w1IFQqsE AslknBDw6U9vV/GGIb9ck6NsscUKfX1BpgwUkUS3T/LECQ==
;; Received 744 bytes from 37.209.198.10#53(d.nic.cloud) in 114 ms

derak.cloud.            10      IN      A       5.145.115.198
derak.cloud.            10      IN      A       5.145.115.194
;; Received 72 bytes from 5.145.115.115#53(1.top.derak.cloud) in 4 ms

instated of 1.1.1.1 we can set another DNS server to start the trace from there

# using google public DNS server
curly --dns trace -d derak.cloud --dc 8.8.8.8
# output is the same
PrevioushttpNextip

Last updated 4 years ago

Was this helpful?