I am just curious if you could use dig to check if a certain nameserver responds to recursive queries.
Thanks!
Asked
Active
Viewed 6.1k times
4 Answers
25
Use dig and check the status of the RD and RA bits in the response.
By default dig will send a recursive query (RD set in the query header) unless you set the +norecurse command line flag.
If the server supports recursive queries the response will have the "recursion available" RA bit set in the response headers.
The RA bit is the diagnostic test for recursive query support.
Alnitak
- 21,641
14
See if you can query it for a DNS entry for which it is not authoritative, e.g., try: host www.cnn.com ns.example.com, where ns.example.com is the name server you're testing. If it doesn't respond to recursive queries, you will get a REFUSED.
$ host www.cnn.com. ns1.example.com
Using domain server:
Name: ns1.example.com
Address: 192.168.183.130#53
Aliases:
Host www.cnn.com not found: 5(REFUSED)
whereas a DNS server that does recursive queries:
$ host www.cnn.com. 8.8.8.8
Using domain server:
Name: 8.8.8.8
Address: 8.8.8.8#53
Aliases:
www.cnn.com has address 157.166.255.18
www.cnn.com has address 157.166.255.19
www.cnn.com has address 157.166.226.25
www.cnn.com has address 157.166.226.26
cjc
- 25,492
0
According to Alnitak's answer a simple script can be written using the dnspython module:
import dns, dns.resolver
domain = "www.cnn.com"
nameserver_ip = "8.8.8.8"
message = dns.message.make_query(domain, rdtype=dns.rdatatype.A, ednsflags=dns.flags.RA)
resp = dns.query.udp(message, nameserver_ip)
if resp.rcode() != 0:
print("Nameserver responds to recursive queries.")
OmerFI
- 101
- 2