Analyzing regular DNS operations
In this recipe, we will see how to find out if DNS is working properly or not. We will see some scenarios of DNS operations, and what can go wrong.
Open Wireshark and start capturing data. You should mirror a device that is using DNS, or the DNS server itself.
How to do it...
Connect Wireshark to the LAN switch attached to the monitored device, and configure port mirror to the device from which you suspect the problem is coming. Go through the following steps:
- In case of user complains, configure the port mirror for monitoring the user device.
- In case of a general problem in the network, configure port mirror to the DNS server:
- When the DNS server is configured on the internal server, configure port mirror ...