dig vs nslookup

by

Why do the commands dig and nslookup sometimes print different results?

~$ dig facebook.com

; <<>> DiG 9.9.2-P1 <<>> facebook.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6625
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;facebook.com.            IN    A

;; ANSWER SECTION:
facebook.com.        205    IN    A    173.252.110.27

;; Query time: 291 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Sun Oct  6 17:55:52 2013
;; MSG SIZE  rcvd: 57

~$ nslookup facebook.com
Server:        8.8.8.8
Address:    8.8.8.8#53

Non-authoritative answer:
Name:    facebook.com
Address: 10.10.34.34
Contents hide
Answers:
Method 1
Method 2

Answers:

Thank you for visiting the Q&A section on Magenaut. Please note that all the answers may not help you solve the issue immediately. So please treat them as advisements. If you found the post helpful (or not), leave a comment & I’ll get back to you as soon as possible.

Method 1

dig uses the OS resolver libraries. nslookup uses is own internal ones.

That is why Internet Systems Consortium (ISC) has been trying to get people to stop using nslookup for some time now. It causes confusion.

Method 2

For a while nslookup was being reported as a deprecated application and should not be used anymore.

The output even warned you of this:

Note: nslookup is deprecated and may be removed from future releases.
Consider using the ‘dig’ or ‘host’ programs instead. Run nslookup with
the ‘-sil[ent]’ option to prevent this message from appearing.

excerpt from http://cr.yp.to/djbdns/nslookup.html

Do not use the ancient nslookup program. Whatever you’re trying to do,
there’s a better way to do it. Even the BIND company, which maintains
and distributes nslookup, says “nslookup is deprecated and may be
removed from future releases.”

However in the release notes from Bind 9.9.0a3 there is an entry (#1700) which states the following:

1700.   [func]      nslookup is no longer to be treated as deprecated.
                    Remove "deprecated" warning message.  Add man page.

The Wikipedia page also states this:

As of BIND 9.9.0a3, nslookup has apparently been resurrected (“nslookup is no longer to be treated as deprecated”). (The Internet Systems Consortium had previously deprecated nslookup in favor of host and dig for some time.)

So it would seem that nslookup is perfectly fine to use along with dig. In addition to the 2 tools using different resolvers, there are things that are easier to do in dig vs. nslookup, though nslookup is generally the easier of the 2 tools to use day to day.

Also dig‘s output is typically easier to parse in scripts or in command line usage.


All methods was sourced from stackoverflow.com or stackexchange.com, is licensed under cc by-sa 2.5, cc by-sa 3.0 and cc by-sa 4.0

0 0 votes
Article Rating
Subscribe
Notify of
guest

0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x