Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Equivalent to dscacheutil -cachedump -entries on ML ?

V

V4705

macrumors 6502
Original poster
Mar 23, 2009
438
0
Hi,
I'm looking for a command to show me all the dns cashe right now on my local machine,
As far as I understand, "dscacheutil -cachedump -entries" used to do that on previous versions but not on ML...

Is there any way to get the same info ?

Thanks!
 
V

V4705

macrumors 6502
Original poster
Mar 23, 2009
438
0
I'm not trying to flush the cache but to print a dump (show all the current records).

When trying to run "sudo dscacheutil -cachedump -entries" I get an error "Unable to get details from the cache node".
Google helped me to find this article that explains "... Apple has changed the method for caching DNS queries, which unlinks it from the "dscacheutil" command...".


Thanks :)
 
V

V4705

macrumors 6502
Original poster
Mar 23, 2009
438
0
Ok so apparently that wasn't the place the pointer is hosted,
sudo killall -INFO mDNSResponder
dump the cache records to /var/log/system.log, but the record I'm looking for isn't there.

The issue is, only one computer in my network resolve an address (subdomain.mydomain.com) to a specific IP address that I'm not familiar with and looks like it might be phishing or some other scam\worm.

mdnsresponder didn't show this record, and /etc/hosts looks clean.

do you have any other suggestions where to look?

is there any command I can use to resolve an address to IP (like "ping") but to also show me where this record is hosted ("who" translate the address) ?


Many thanks!
 
rhoydotp

rhoydotp

macrumors 6502
Sep 28, 2006
467
75
V4705 said:
do you have any other suggestions where to look?

is there any command I can use to resolve an address to IP (like "ping") but to also show me where this record is hosted ("who" translate the address) ?


Many thanks!
Click to expand...

interesting issue ... maybe look into getent or dscl
 
V

V4705

macrumors 6502
Original poster
Mar 23, 2009
438
0
thanks for the advice :)
unfortunately, man dscl didn't show me anything similar to what I'm trying to do
getent command not found on ML


any other suggestions?
just a reminder - what i'm trying to do is to understand which table holds the dns record (or any record that translate specific subdomain to an IP address on my computer).
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom