Related System Administrator and Network Tools Show
We were contacted by our ISP saying that one of our servers was issuing an attack on another computer. May 23 14:11:35 wdc lfd[14308]: *Port Scan* detected from ***.***.***.*** (US/United States/-). 11 hits in the last 245 seconds - *Blocked in csf* for 3600 secs [PS_LIMIT]I don't know what it means, but our server is a factory image, with only a couple programs running. I would like to know the domain, but don't know how to look it up.
A domain name is an address on the Internet which people can use to find resources like websites, or send email. For example - auda.org.au is a domain name which points to auDA's website. Using domain names means we don't have to have to remember Internet Protocol (IP) Addresses. Every device connected to the internet - such as a server which hosts a website - has an IP address. which is a long strong of numbers and characters e.g. 2606:4700::6811:ed6b The Domain Name System (DNS) matches domain names to IP addresses. When you type in a domain name into your web browser, it sends a request to a server (or a number of servers) for the IP address of the website you're trying to view, which then allows your browser to load it. The process is similar when you send an email. When you push 'send' on an email, a request is sent to an email server, which then, based on the domain name in the recipient's email address, finds the IP address for the mail server for that domain name. That server, then forwards the email to the recipient. Category: Registering a name
Look at your browser's address bar. What ever is written there is the URL of the page you are on. What ever is written there after the http://www but before the first / is the domain name of the site you are on.
You'll be very familiar with some domain names like; google.com facebook.com yahoo.com youtube.com wikipedia.org
You can use the following animated tutorail to help you understand how DNS work
Use the DNS lookup tool to find the IP address of any domain name. The lookup results will include the IP addresses in the DNS records received from the name servers. How does DNS work?The domain name system, otherwise known as DNS, is a key component of the Internet. DNS is the resolution of a domain name to an IP address. Typical DNS queries are sent through four different server types: the DNS recursor, the root nameserver, the TLD nameserver, and the authoritative nameserver. The domain name system recursor gets the query and communicates with other domain name system servers in order to get the correct IP address. Once it’s located, the domain name system recursor will send the query to the three other domain name system servers. Next, the root server, designated as the Internet’s domain name system root zone, responds to requests sent in the root zone. A list of authoritative nameservers that correspond with TLDs gets sent back as a response. The TLD nameserver will then store the second-level domain IP address and release the website’s IP address. The query gets sent to the domain’s nameserver, and finally, the authoritative nameserver can respond to the original domain name system query. What is DNS lookup used for?DNS record lookups are used for translating IP addresses and domain names. With the tool, users can find the IP address of a domain name and other information related to domains. Users can also perform a reverse DNS lookup, which uses pointer records to query an IP address in order to find a hostname. Note that some IP addresses will not return a domain name if there are multiple domains associated with a given IP address. Overview of the forward DNS lookup processThe forward lookup, or simple DNS lookup, is the most commonly used approach to DNS. The forward approach to DNS is simply finding out the IP address of a domain. People tend to find it difficult to remember long strings of numbers. Instead, it's easier to remember a domain name that uses words, like 'google.com' rather than '8.8.4.4.' However, electronic devices use streams of 1s and 0s to communicate. The only way for one computer to communicate with another is by unique identification. The method of identification used on the Internet is IP addresses. Here are the simple steps for DNS resolution:
How to perform a DNS lookupTo use the DNS lookup command, enter the domain URL into the tool above and select Lookup or press Enter. It will return the IPv4 address records for a domain. You can also use the nslookup command to retrieve the nameserver type associated with a given domain rather than using the DNS lookup command. If you're using a Windows computer, go to Start, then Run, and type command to open the command prompt. Type nslookup and hit Enter. Your search will bring back information about your local DNS default server and IP address. If you're using a Mac computer, go to the Finder menu in the upper right corner and click Go. Find Utilities, then select Terminal. In the box that pops up, type nslookup followed by the IP address or domain you want to query, and then hit Enter. Your search will return the DNS server and IP address of the information you entered. |