DNS basics:

Determine nameservers, or who is in CONTROL

 

MacBook-Pro:~ andrewkaplan$ dig shuttercraft.com ns

; <<>> DiG 9.8.3-P1 <<>> shuttercraft.com ns

;; global options: +cmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 14484

;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:

;shuttercraft.com. IN NS

;; ANSWER SECTION:

shuttercraft.com. 86400 IN NS ns1.cshore.com.

shuttercraft.com. 86400 IN NS ns2.cshore.com.

 

 

To determine the mail server

 

MacBook-Pro:~ andrewkaplan$ dig @8.8.8.8 cshore.com mx

 

;; QUESTION SECTION:

;cshore.com. IN MX

;; ANSWER SECTION:

cshore.com. 713 IN MX 5 sentry.cshore.com.

Example RackSpace handles email

 

MacBook-Pro:~ andrewkaplan$ dig disposalsafety.com mx

; <<>> DiG 9.8.3-P1 <<>> disposalsafety.com mx

;; ANSWER SECTION:

disposalsafety.com. 10800 IN MX 20 mx2.emailsrvr.com. = RACKSPACE

disposalsafety.com. 10800 IN MX 10 mx1.emailsrvr.com. = RACKSPACE

webmail on rackspace is webmail.emailsrvr.com 

 

Determine the IP of mail server/hostname

 

MacBook-Pro:~ andrewkaplan$ dig sentry.cshore.com

; <<>> DiG 9.8.3-P1 <<>> sentry.cshore.com

 

;; ANSWER SECTION:

sentry.cshore.com. 900 IN A 96.84.218.58

Determine who OWNS that IP

 

dig -x 96.84.218.58

; <<>> DiG 9.8.3-P1 <<>> -x 96.84.218.58

;; ANSWER SECTION:

58.218.84.96.in-addr.arpa. 3600 IN PTR 96-84-218-58-static.hfc.comcastbusiness.net.

Determine who hosts the site:

 

MacBook-Pro:~ andrewkaplan$ dig shuttercraft.com

; <<>> DiG 9.8.3-P1 <<>> shuttercraft.com

;; global options: +cmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 48792

;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:

;shuttercraft.com. IN A

;; ANSWER SECTION:

shuttercraft.com. 86400 IN A 108.163.236.145

 

Cybershore IP’s

108.163.236.153

108.163.236.145

Walden Pond Design IP’s

67.225.176.30

67.225.176.60