How do I Search All Forward Lookup Names in Windows 2008 R2 DNS Server for a String?

windows-server-2008 domain-name-system

Is there a way to search the entire forward lookup zone in Windows 2008 R2 DNS server?

I would like to search both the NAME and the RDATA of all the resource records for a substring.


You can use dnscmd to enumerate records in a zone.

dnscmd /enumrecords mydomain.com @

You can then search the output of that for your string(s).

dnscmd /enumrecords mydomain.com @ | find "somestring"

or dump it to a file and parse the file with whatever tool you like

dnscmd /enumrecords mydomain.com @ > mydomain_enum.txt

There's a good article on doing something similar here.

And, as voretaq points out, yes it does work with non-AD-integrated zones.


For an AD-Integrated zone you should be able to do this via an LDAP search. I'm not sure about the LDAP schema MS uses, but it's going to involve a filter something like (|(name=???)(rrdata=???)) -- I'm almost certain they don't use name and rrdata but substitute appropriately.

For non-integrated zones it may be easier to dump the zone file in BIND format and grep through it, or trigger an AXFR and grep through that. I'm not aware of anything in the Windows tools that lets you do a substring search.
Of course the last time I touched Windows DNS tools Win2K was The New Hotness On The Block so my knowledge is a little stale…

Related

monitoring nfs with monit
RAID - Multiple drives on one channel
How to do "du" on all files under a directory in linux?
Radius feedback from AP to WiFi client
EWS: Check if Calendar Appointment IsCancelled [closed]
Server cloning: is possible to clone a server using the arrays of another?
Archlinux and openssh
Is there a way to use svnsync with a repository loaded from a dump file?
Why is solr admin panel not showing?
datetime format changed between mysql 5.0 and 5.1?
Starting apache fails (could not bind to address 0.0.0.0:80)
How can I horizontally center a button element in a div element?