how to find host name from IP with out login to the host

前端未结

关注

 11  2161

花落未央

i need to find the host name of a UNIX host whose IP is known with out login to that UNIX host

相关标签:

11条回答

情深已故

2021-01-29 21:20

In most cases, traceroute command works fine. nslookup and host commands may fail.

0 讨论(0)
发布评论:

提交评论
- 加载中...
星月不相逢

2021-01-29 21:22
```
python -c "import socket;print(socket.gethostbyaddr('127.0.0.1'))"
```
if you just need the name, no additional info, add [0] at the end:
```
python -c "import socket;print(socket.gethostbyaddr('8.8.8.8'))[0]"
```
0 讨论(0)
发布评论:

提交评论
- 加载中...

臣服心动

2021-01-29 21:23

Use nslookup

nslookup 208.77.188.166 
...
Non-authoritative answer:
166.188.77.208.in-addr.arpa     name = www.example.com.

0 讨论(0)

逝去的感伤

2021-01-29 21:25

It depends on the context. I think you're referring to the operating system's hostname (returned by hostname when you're logged in). This command is for internal names only, so to query for a machine's name requires different naming systems. There are multiple systems which use names to identify hosts including DNS, DHCP, LDAP (DN's), hostname, etc. and many systems use zeroconf to synchronize names between multiple naming systems. For this reason, results from hostname will sometimes match results from dig (see below) or other naming systems, but often times they will not match.

DNS is by far the most common and is used both on the internet (like google.com. A 216.58.218.142) and at home (mDNS/LLMNR), so here's how to perform a reverse DNS lookup: dig -x <address> (nslookup and host are simpler, provide less detail, and may even return different results; however, dig is not included in Windows).

Note that hostnames within a CDN will not resolve to the canonical domain name (e.g. "google.com"), but rather the hostname of the host IP you queried (e.g. "dfw25s08-in-f142.1e100.net"; interesting tidbit: 1e100 is 1 googol).

Also note that DNS hosts can have more than one name. This is common for hosts with more than one webserver (virtual hosting), although this is becoming less common thanks to the proliferation of virtualization technologies. These hosts have multiple PTR DNS records.

Finally, note that DNS host records can be overridden by the local machine via /etc/hosts. If you're not getting the hostname you expect, be sure you check this file.

DHCP hostnames are queried differently depending on which DHCP server software is used, because (as far as I know) the protocol does not define a method for querying; however, most servers provide some way of doing this (usually with a privileged account).

Note DHCP names are usually synchronized with DNS server(s), so it's common to see the same hostnames in a DHCP client least table and in the DNS server's A (or AAAA for IPv6) records. Again, this is usually done as part of zeroconf.

Also note that just because a DHCP lease exists for a client, doesn't mean it's still being used.

NetBIOS for TCP/IP (NBT) was used for decades to perform name resolution, but has since been replaced by LLMNR for name resolution (part of zeroconf on Windows). This legacy system can still be queried with the nbtstat (Windows) or nmblookup (Linux).

0 讨论(0)
发布评论:

提交评论
- 加载中...
花落未央

2021-01-29 21:29
If you are specifically looking for a Windows machine, try below command:
```
nbtstat -a 10.228.42.57
```
0 讨论(0)
发布评论:

提交评论
- 加载中...
走了就别回头了

2021-01-29 21:32
- For Windows, try:
```
NBTSTAT -A 10.100.3.104
```
  or
```
ping -a 10.100.3.104
```
- For Linux, try:
```
nmblookup -A 10.100.3.104
```
They are almost same.
0 讨论(0)
发布评论:

提交评论
- 加载中...

1 2 下一页