1.. Copyright (C) Internet Systems Consortium, Inc. ("ISC") 2.. 3.. SPDX-License-Identifier: MPL-2.0 4.. 5.. This Source Code Form is subject to the terms of the Mozilla Public 6.. License, v. 2.0. If a copy of the MPL was not distributed with this 7.. file, you can obtain one at https://mozilla.org/MPL/2.0/. 8.. 9.. See the COPYRIGHT file distributed with this work for additional 10.. information regarding copyright ownership. 11 12.. highlight: console 13 14.. _man_dig: 15 16dig - DNS lookup utility 17------------------------ 18 19Synopsis 20~~~~~~~~ 21:program:`dig` [@server] [**-b** address] [**-c** class] [**-f** filename] [**-k** filename] [**-m**] [**-p** port#] [**-q** name] [**-t** type] [**-v**] [**-x** addr] [**-y** [hmac:]name:key] [ [**-4**] | [**-6**] ] [name] [type] [class] [queryopt...] 22 23:program:`dig` [**-h**] 24 25:program:`dig` [global-queryopt...] [query...] 26 27Description 28~~~~~~~~~~~ 29 30``dig`` is a flexible tool for interrogating DNS name servers. It 31performs DNS lookups and displays the answers that are returned from the 32name server(s) that were queried. Most DNS administrators use ``dig`` to 33troubleshoot DNS problems because of its flexibility, ease of use, and 34clarity of output. Other lookup tools tend to have less functionality 35than ``dig``. 36 37Although ``dig`` is normally used with command-line arguments, it also 38has a batch mode of operation for reading lookup requests from a file. A 39brief summary of its command-line arguments and options is printed when 40the ``-h`` option is given. The BIND 9 41implementation of ``dig`` allows multiple lookups to be issued from the 42command line. 43 44Unless it is told to query a specific name server, ``dig`` tries each 45of the servers listed in ``/etc/resolv.conf``. If no usable server 46addresses are found, ``dig`` sends the query to the local host. 47 48When no command-line arguments or options are given, ``dig`` 49performs an NS query for "." (the root). 50 51It is possible to set per-user defaults for ``dig`` via 52``${HOME}/.digrc``. This file is read and any options in it are applied 53before the command-line arguments. The ``-r`` option disables this 54feature, for scripts that need predictable behavior. 55 56The IN and CH class names overlap with the IN and CH top-level domain 57names. Either use the ``-t`` and ``-c`` options to specify the type and 58class, use the ``-q`` to specify the domain name, or use "IN." and 59"CH." when looking up these top-level domains. 60 61Simple Usage 62~~~~~~~~~~~~ 63 64A typical invocation of ``dig`` looks like: 65 66:: 67 68 dig @server name type 69 70where: 71 72``server`` 73 is the name or IP address of the name server to query. This can be an 74 IPv4 address in dotted-decimal notation or an IPv6 address in 75 colon-delimited notation. When the supplied ``server`` argument is a 76 hostname, ``dig`` resolves that name before querying that name 77 server. 78 79 If no ``server`` argument is provided, ``dig`` consults 80 ``/etc/resolv.conf``; if an address is found there, it queries the 81 name server at that address. If either of the ``-4`` or ``-6`` 82 options are in use, then only addresses for the corresponding 83 transport are tried. If no usable addresses are found, ``dig`` 84 sends the query to the local host. The reply from the name server 85 that responds is displayed. 86 87``name`` 88 is the name of the resource record that is to be looked up. 89 90``type`` 91 indicates what type of query is required - ANY, A, MX, SIG, etc. 92 ``type`` can be any valid query type. If no ``type`` argument is 93 supplied, ``dig`` performs a lookup for an A record. 94 95Options 96~~~~~~~ 97 98``-4`` 99 This option indicates that only IPv4 should be used. 100 101``-6`` 102 This option indicates that only IPv6 should be used. 103 104``-b address[#port]`` 105 This option sets the source IP address of the query. The ``address`` must be a 106 valid address on one of the host's network interfaces, or "0.0.0.0" 107 or "::". An optional port may be specified by appending ``#port``. 108 109``-c class`` 110 This option sets the query class. The default ``class`` is IN; other classes are 111 HS for Hesiod records or CH for Chaosnet records. 112 113``-f file`` 114 This option sets batch mode, in which ``dig`` reads a list of lookup requests to process from 115 the given ``file``. Each line in the file should be organized in the 116 same way it would be presented as a query to ``dig`` using the 117 command-line interface. 118 119``-k keyfile`` 120 This option tells ``named`` to sign queries using TSIG using a key read from the given file. Key 121 files can be generated using ``tsig-keygen``. When using TSIG 122 authentication with ``dig``, the name server that is queried needs to 123 know the key and algorithm that is being used. In BIND, this is done 124 by providing appropriate ``key`` and ``server`` statements in 125 ``named.conf``. 126 127``-m`` 128 This option enables memory usage debugging. 129 130``-p port`` 131 This option sends the query to a non-standard port on the server, instead of the 132 default port 53. This option is used to test a name server that 133 has been configured to listen for queries on a non-standard port 134 number. 135 136``-q name`` 137 This option specifies the domain name to query. This is useful to distinguish the ``name`` 138 from other arguments. 139 140``-r`` 141 This option indicates that options from ``${HOME}/.digrc`` should not be read. This is useful for 142 scripts that need predictable behavior. 143 144``-t type`` 145 This option indicates the resource record type to query, which can be any valid query type. If 146 it is a resource record type supported in BIND 9, it can be given by 147 the type mnemonic (such as ``NS`` or ``AAAA``). The default query type is 148 ``A``, unless the ``-x`` option is supplied to indicate a reverse 149 lookup. A zone transfer can be requested by specifying a type of 150 AXFR. When an incremental zone transfer (IXFR) is required, set the 151 ``type`` to ``ixfr=N``. The incremental zone transfer contains 152 all changes made to the zone since the serial number in the zone's 153 SOA record was ``N``. 154 155 All resource record types can be expressed as ``TYPEnn``, where ``nn`` is 156 the number of the type. If the resource record type is not supported 157 in BIND 9, the result is displayed as described in :rfc:`3597`. 158 159``-u`` 160 This option indicates that print query times should be provided in microseconds instead of milliseconds. 161 162``-v`` 163 This option prints the version number and exits. 164 165``-x addr`` 166 This option sets simplified reverse lookups, for mapping addresses to names. The 167 ``addr`` is an IPv4 address in dotted-decimal notation, or a 168 colon-delimited IPv6 address. When the ``-x`` option is used, there is no 169 need to provide the ``name``, ``class``, and ``type`` arguments. 170 ``dig`` automatically performs a lookup for a name like 171 ``94.2.0.192.in-addr.arpa`` and sets the query type and class to PTR 172 and IN respectively. IPv6 addresses are looked up using nibble format 173 under the IP6.ARPA domain. 174 175``-y [hmac:]keyname:secret`` 176 This option signs queries using TSIG with the given authentication key. 177 ``keyname`` is the name of the key, and ``secret`` is the 178 base64-encoded shared secret. ``hmac`` is the name of the key algorithm; 179 valid choices are ``hmac-md5``, ``hmac-sha1``, ``hmac-sha224``, 180 ``hmac-sha256``, ``hmac-sha384``, or ``hmac-sha512``. If ``hmac`` is 181 not specified, the default is ``hmac-md5``; if MD5 was disabled, the default is 182 ``hmac-sha256``. 183 184.. note:: Only the ``-k`` option should be used, rather than the ``-y`` option, 185 because with ``-y`` the shared secret is supplied as a command-line 186 argument in clear text. This may be visible in the output from ``ps1`` or 187 in a history file maintained by the user's shell. 188 189Query Options 190~~~~~~~~~~~~~ 191 192``dig`` provides a number of query options which affect the way in which 193lookups are made and the results displayed. Some of these set or reset 194flag bits in the query header, some determine which sections of the 195answer get printed, and others determine the timeout and retry 196strategies. 197 198Each query option is identified by a keyword preceded by a plus sign 199(``+``). Some keywords set or reset an option; these may be preceded by 200the string ``no`` to negate the meaning of that keyword. Other keywords 201assign values to options, like the timeout interval. They have the form 202``+keyword=value``. Keywords may be abbreviated, provided the 203abbreviation is unambiguous; for example, ``+cd`` is equivalent to 204``+cdflag``. The query options are: 205 206``+[no]aaflag`` 207 This option is a synonym for ``+[no]aaonly``. 208 209``+[no]aaonly`` 210 This option sets the ``aa`` flag in the query. 211 212``+[no]additional`` 213 This option displays [or does not display] the additional section of a reply. The 214 default is to display it. 215 216``+[no]adflag`` 217 This option sets [or does not set] the AD (authentic data) bit in the query. This 218 requests the server to return whether all of the answer and authority 219 sections have been validated as secure, according to the security 220 policy of the server. ``AD=1`` indicates that all records have been 221 validated as secure and the answer is not from a OPT-OUT range. ``AD=0`` 222 indicates that some part of the answer was insecure or not validated. 223 This bit is set by default. 224 225``+[no]all`` 226 This option sets or clears all display flags. 227 228``+[no]answer`` 229 This option displays [or does not display] the answer section of a reply. The default 230 is to display it. 231 232``+[no]authority`` 233 This option displays [or does not display] the authority section of a reply. The 234 default is to display it. 235 236``+[no]badcookie`` 237 This option retries the lookup with a new server cookie if a BADCOOKIE response is 238 received. 239 240``+[no]besteffort`` 241 This option attempts to display the contents of messages which are malformed. The 242 default is to not display malformed answers. 243 244``+bufsize[=B]`` 245 This option sets the UDP message buffer size advertised using EDNS0 246 to ``B`` bytes. The maximum and minimum sizes of this buffer are 247 65535 and 0, respectively. ``+bufsize=0`` disables EDNS (use 248 ``+bufsize=0 +edns`` to send an EDNS message with an advertised size 249 of 0 bytes). ``+bufsize`` restores the default buffer size. 250 251``+[no]cdflag`` 252 This option sets [or does not set] the CD (checking disabled) bit in the query. This 253 requests the server to not perform DNSSEC validation of responses. 254 255``+[no]class`` 256 This option displays [or does not display] the CLASS when printing the record. 257 258``+[no]cmd`` 259 This option toggles the printing of the initial comment in the output, identifying the 260 version of ``dig`` and the query options that have been applied. This option 261 always has a global effect; it cannot be set globally and then overridden on a 262 per-lookup basis. The default is to print this comment. 263 264``+[no]comments`` 265 This option toggles the display of some comment lines in the output, with 266 information about the packet header and OPT pseudosection, and the names of 267 the response section. The default is to print these comments. 268 269 Other types of comments in the output are not affected by this option, but 270 can be controlled using other command-line switches. These include 271 ``+[no]cmd``, ``+[no]question``, ``+[no]stats``, and ``+[no]rrcomments``. 272 273``+[no]cookie=####`` 274 This option sends [or does not send] a COOKIE EDNS option, with an optional value. Replaying a COOKIE 275 from a previous response allows the server to identify a previous 276 client. The default is ``+cookie``. 277 278 ``+cookie`` is also set when ``+trace`` is set to better emulate the 279 default queries from a nameserver. 280 281``+[no]crypto`` 282 This option toggles the display of cryptographic fields in DNSSEC records. The 283 contents of these fields are unnecessary for debugging most DNSSEC 284 validation failures and removing them makes it easier to see the 285 common failures. The default is to display the fields. When omitted, 286 they are replaced by the string ``[omitted]`` or, in the DNSKEY case, the 287 key ID is displayed as the replacement, e.g. ``[ key id = value ]``. 288 289``+[no]defname`` 290 This option, which is deprecated, is treated as a synonym for ``+[no]search``. 291 292``+[no]dnssec`` 293 This option requests that DNSSEC records be sent by setting the DNSSEC OK (DO) bit in 294 the OPT record in the additional section of the query. 295 296``+domain=somename`` 297 This option sets the search list to contain the single domain ``somename``, as if 298 specified in a ``domain`` directive in ``/etc/resolv.conf``, and 299 enables search list processing as if the ``+search`` option were 300 given. 301 302``+dscp=value`` 303 This option sets the DSCP code point to be used when sending the query. Valid DSCP 304 code points are in the range [0...63]. By default no code point is 305 explicitly set. 306 307``+[no]edns[=#]`` 308 This option specifies the EDNS version to query with. Valid values are 0 to 255. 309 Setting the EDNS version causes an EDNS query to be sent. 310 ``+noedns`` clears the remembered EDNS version. EDNS is set to 0 by 311 default. 312 313``+[no]ednsflags[=#]`` 314 This option sets the must-be-zero EDNS flags bits (Z bits) to the specified value. 315 Decimal, hex, and octal encodings are accepted. Setting a named flag 316 (e.g., DO) is silently ignored. By default, no Z bits are set. 317 318``+[no]ednsnegotiation`` 319 This option enables/disables EDNS version negotiation. By default, EDNS version 320 negotiation is enabled. 321 322``+[no]ednsopt[=code[:value]]`` 323 This option specifies the EDNS option with code point ``code`` and an optional payload 324 of ``value`` as a hexadecimal string. ``code`` can be either an EDNS 325 option name (for example, ``NSID`` or ``ECS``) or an arbitrary 326 numeric value. ``+noednsopt`` clears the EDNS options to be sent. 327 328``+[no]expire`` 329 This option sends an EDNS Expire option. 330 331``+[no]fail`` 332 This option indicates that ``named`` should try [or not try] the next server if a SERVFAIL is received. The default is 333 to not try the next server, which is the reverse of normal stub 334 resolver behavior. 335 336``+[no]header-only`` 337 This option sends a query with a DNS header without a question section. The 338 default is to add a question section. The query type and query name 339 are ignored when this is set. 340 341``+[no]identify`` 342 This option shows [or does not show] the IP address and port number that supplied 343 the answer, when the ``+short`` option is enabled. If short form 344 answers are requested, the default is not to show the source address 345 and port number of the server that provided the answer. 346 347``+[no]idnin`` 348 This option processes [or does not process] IDN domain names on input. This requires 349 ``IDN SUPPORT`` to have been enabled at compile time. 350 351 The default is to process IDN input when standard output is a tty. 352 The IDN processing on input is disabled when ``dig`` output is redirected 353 to files, pipes, and other non-tty file descriptors. 354 355``+[no]idnout`` 356 This option converts [or does not convert] puny code on output. This requires 357 ``IDN SUPPORT`` to have been enabled at compile time. 358 359 The default is to process puny code on output when standard output is 360 a tty. The puny code processing on output is disabled when ``dig`` output 361 is redirected to files, pipes, and other non-tty file descriptors. 362 363``+[no]ignore`` 364 This option ignores [or does not ignore] truncation in UDP responses instead of retrying with TCP. By 365 default, TCP retries are performed. 366 367``+[no]keepalive`` 368 This option sends [or does not send] an EDNS Keepalive option. 369 370``+[no]keepopen`` 371 This option keeps [or does not keep] the TCP socket open between queries, and reuses it rather than 372 creating a new TCP socket for each lookup. The default is 373 ``+nokeepopen``. 374 375``+[no]mapped`` 376 This option allows [or does not allow] mapped IPv4-over-IPv6 addresses to be used. The default is 377 ``+mapped``. 378 379``+[no]multiline`` 380 This option prints [or does not print] records, like the SOA records, in a verbose multi-line format 381 with human-readable comments. The default is to print each record on 382 a single line to facilitate machine parsing of the ``dig`` output. 383 384``+ndots=D`` 385 This option sets the number of dots (``D``) that must appear in ``name`` for 386 it to be considered absolute. The default value is that defined using 387 the ``ndots`` statement in ``/etc/resolv.conf``, or 1 if no ``ndots`` 388 statement is present. Names with fewer dots are interpreted as 389 relative names, and are searched for in the domains listed in the 390 ``search`` or ``domain`` directive in ``/etc/resolv.conf`` if 391 ``+search`` is set. 392 393``+[no]nsid`` 394 When enabled, this option includes an EDNS name server ID request when sending a query. 395 396``+[no]nssearch`` 397 When this option is set, ``dig`` attempts to find the authoritative 398 name servers for the zone containing the name being looked up, and 399 display the SOA record that each name server has for the zone. 400 Addresses of servers that did not respond are also printed. 401 402``+[no]onesoa`` 403 When enabled, this option prints only one (starting) SOA record when performing an AXFR. The 404 default is to print both the starting and ending SOA records. 405 406``+[no]opcode=value`` 407 When enabled, this option sets (restores) the DNS message opcode to the specified value. The 408 default value is QUERY (0). 409 410``+padding=value`` 411 This option pads the size of the query packet using the EDNS Padding option to 412 blocks of ``value`` bytes. For example, ``+padding=32`` causes a 413 48-byte query to be padded to 64 bytes. The default block size is 0, 414 which disables padding; the maximum is 512. Values are ordinarily 415 expected to be powers of two, such as 128; however, this is not 416 mandatory. Responses to padded queries may also be padded, but only 417 if the query uses TCP or DNS COOKIE. 418 419``+[no]qr`` 420 This option toggles the display of the query message as it is sent. By default, the query 421 is not printed. 422 423``+[no]question`` 424 This option toggles the display of the question section of a query when an answer is 425 returned. The default is to print the question section as a comment. 426 427``+[no]raflag`` 428 This option sets [or does not set] the RA (Recursion Available) bit in the query. The 429 default is ``+noraflag``. This bit is ignored by the server for 430 QUERY. 431 432``+[no]rdflag`` 433 This option is a synonym for ``+[no]recurse``. 434 435``+[no]recurse`` 436 This option toggles the setting of the RD (recursion desired) bit in the query. 437 This bit is set by default, which means ``dig`` normally sends 438 recursive queries. Recursion is automatically disabled when the 439 ``+nssearch`` or ``+trace`` query option is used. 440 441``+retry=T`` 442 This option sets the number of times to retry UDP and TCP queries to server to ``T`` 443 instead of the default, 2. Unlike ``+tries``, this does not include 444 the initial query. 445 446``+[no]rrcomments`` 447 This option toggles the display of per-record comments in the output (for example, 448 human-readable key information about DNSKEY records). The default is 449 not to print record comments unless multiline mode is active. 450 451``+[no]search`` 452 This option uses [or does not use] the search list defined by the searchlist or domain 453 directive in ``resolv.conf``, if any. The search list is not used by 454 default. 455 456 ``ndots`` from ``resolv.conf`` (default 1), which may be overridden by 457 ``+ndots``, determines whether the name is treated as relative 458 and hence whether a search is eventually performed. 459 460``+[no]short`` 461 This option toggles whether a terse answer is provided. The default is to print the answer in a verbose 462 form. This option always has a global effect; it cannot be set globally and 463 then overridden on a per-lookup basis. 464 465``+[no]showsearch`` 466 This option performs [or does not perform] a search showing intermediate results. 467 468``+[no]sigchase`` 469 This feature is now obsolete and has been removed; use ``delv`` 470 instead. 471 472``+split=W`` 473 This option splits long hex- or base64-formatted fields in resource records into 474 chunks of ``W`` characters (where ``W`` is rounded up to the nearest 475 multiple of 4). ``+nosplit`` or ``+split=0`` causes fields not to be 476 split at all. The default is 56 characters, or 44 characters when 477 multiline mode is active. 478 479``+[no]stats`` 480 This option toggles the printing of statistics: when the query was made, the size of the 481 reply, etc. The default behavior is to print the query statistics as a 482 comment after each lookup. 483 484``+[no]subnet=addr[/prefix-length]`` 485 This option sends [or does not send] an EDNS CLIENT-SUBNET option with the specified IP 486 address or network prefix. 487 488 ``dig +subnet=0.0.0.0/0``, or simply ``dig +subnet=0`` for short, 489 sends an EDNS CLIENT-SUBNET option with an empty address and a source 490 prefix-length of zero, which signals a resolver that the client's 491 address information must *not* be used when resolving this query. 492 493``+[no]tcflag`` 494 This option sets [or does not set] the TC (TrunCation) bit in the query. The default is 495 ``+notcflag``. This bit is ignored by the server for QUERY. 496 497``+[no]tcp`` 498 This option uses [or does not use] TCP when querying name servers. 499 The default behavior is to use UDP unless a type ``any`` or 500 ``ixfr=N`` query is requested, in which case the default is TCP. 501 AXFR queries always use TCP. To prevent retry over TCP when TC=1 502 is returned from a UDP query, use ``+ignore``. 503 504``+timeout=T`` 505 This option sets the timeout for a query to ``T`` seconds. The default timeout is 506 5 seconds. An attempt to set ``T`` to less than 1 is silently set to 1. 507 508``+[no]topdown`` 509 This feature is related to ``dig +sigchase``, which is obsolete and 510 has been removed. Use ``delv`` instead. 511 512``+[no]trace`` 513 This option toggles tracing of the delegation path from the root name servers for 514 the name being looked up. Tracing is disabled by default. When 515 tracing is enabled, ``dig`` makes iterative queries to resolve the 516 name being looked up. It follows referrals from the root servers, 517 showing the answer from each server that was used to resolve the 518 lookup. 519 520 If ``@server`` is also specified, it affects only the initial query for 521 the root zone name servers. 522 523 ``+dnssec`` is also set when ``+trace`` is set, to better emulate the 524 default queries from a name server. 525 526``+tries=T`` 527 This option sets the number of times to try UDP and TCP queries to server to ``T`` 528 instead of the default, 3. If ``T`` is less than or equal to zero, 529 the number of tries is silently rounded up to 1. 530 531``+trusted-key=####`` 532 This option formerly specified trusted keys for use with ``dig +sigchase``. This 533 feature is now obsolete and has been removed; use ``delv`` instead. 534 535``+[no]ttlid`` 536 This option displays [or does not display] the TTL when printing the record. 537 538``+[no]ttlunits`` 539 This option displays [or does not display] the TTL in friendly human-readable time 540 units of ``s``, ``m``, ``h``, ``d``, and ``w``, representing seconds, minutes, 541 hours, days, and weeks. This implies ``+ttlid``. 542 543``+[no]unexpected`` 544 This option accepts [or does not accept] answers from unexpected sources. By default, ``dig`` 545 will not accept a reply from a source other than the one to which it sent the 546 query. 547 548``+[no]unknownformat`` 549 This option prints all RDATA in unknown RR type presentation format (:rfc:`3597`). 550 The default is to print RDATA for known types in the type's 551 presentation format. 552 553``+[no]vc`` 554 This option uses [or does not use] TCP when querying name servers. This alternate 555 syntax to ``+[no]tcp`` is provided for backwards compatibility. The 556 ``vc`` stands for "virtual circuit." 557 558``+[no]yaml`` 559 When enabled, this option prints the responses (and, if ``+qr`` is in use, also the 560 outgoing queries) in a detailed YAML format. 561 562``+[no]zflag`` 563 This option sets [or does not set] the last unassigned DNS header flag in a DNS query. 564 This flag is off by default. 565 566Multiple Queries 567~~~~~~~~~~~~~~~~ 568 569The BIND 9 implementation of ``dig`` supports specifying multiple 570queries on the command line (in addition to supporting the ``-f`` batch 571file option). Each of those queries can be supplied with its own set of 572flags, options, and query options. 573 574In this case, each ``query`` argument represents an individual query in 575the command-line syntax described above. Each consists of any of the 576standard options and flags, the name to be looked up, an optional query 577type and class, and any query options that should be applied to that 578query. 579 580A global set of query options, which should be applied to all queries, 581can also be supplied. These global query options must precede the first 582tuple of name, class, type, options, flags, and query options supplied 583on the command line. Any global query options (except ``+[no]cmd`` and 584``+[no]short`` options) can be overridden by a query-specific set of 585query options. For example: 586 587:: 588 589 dig +qr www.isc.org any -x 127.0.0.1 isc.org ns +noqr 590 591shows how ``dig`` can be used from the command line to make three 592lookups: an ANY query for ``www.isc.org``, a reverse lookup of 127.0.0.1, 593and a query for the NS records of ``isc.org``. A global query option of 594``+qr`` is applied, so that ``dig`` shows the initial query it made for 595each lookup. The final query has a local query option of ``+noqr`` which 596means that ``dig`` does not print the initial query when it looks up the 597NS records for ``isc.org``. 598 599IDN Support 600~~~~~~~~~~~ 601 602If ``dig`` has been built with IDN (internationalized domain name) 603support, it can accept and display non-ASCII domain names. ``dig`` 604appropriately converts character encoding of a domain name before sending 605a request to a DNS server or displaying a reply from the server. 606To turn off IDN support, use the parameters 607``+noidnin`` and ``+noidnout``, or define the ``IDN_DISABLE`` environment 608variable. 609 610Return Codes 611~~~~~~~~~~~~ 612 613``dig`` return codes are: 614 615``0`` 616 DNS response received, including NXDOMAIN status 617 618``1`` 619 Usage error 620 621``8`` 622 Couldn't open batch file 623 624``9`` 625 No reply from server 626 627``10`` 628 Internal error 629 630Files 631~~~~~ 632 633``/etc/resolv.conf`` 634 635``${HOME}/.digrc`` 636 637See Also 638~~~~~~~~ 639 640:manpage:`delv(1)`, :manpage:`host(1)`, :manpage:`named(8)`, :manpage:`dnssec-keygen(8)`, :rfc:`1035`. 641 642Bugs 643~~~~ 644 645There are probably too many query options. 646