Configure Linux / UNIX Dns Resolver To Append Domain Search Names And Path ( ndots options )

last updated in Categories , , , , , , ,

I‘m using CentOS Linux server version 5.x/6.x+. How do I configure a system so that the DNS resolver will append search path extensions to hostnames that have dots in them? For example, my domain name is when I query for mail hostname it should append and return the IP address of hostname.

You can easily configure the domain search list. The search list is normally determined from the local domain name; by default, it contains only the local domain name. [donotprint][/donotprint]This may be changed by listing the desired domain search path following the search keyword with spaces or tabs separating the names. Resolver queries having fewer than ndots dots (default is 1) in them will be attempted using each component of the search path in turn until a match is found. For environments with multiple subdomains please read options ndots:n below to avoid man-in-the-middle attacks and unnecessary traffic for the root-dns-servers. Note that this process may be slow and will generate a lot of network traffic if the servers for the listed domains are not local, and that queries will time out if no server is available for one of the domains.



Open /etc/resolv.conf file, enter:
# vi /etc/resolv.conf
$ sudo vi /etc/resolv.conf
Now add search path as follows:
Save and close the file.

Optional ntdots configuration

Please note that you may also need to use ndots:n option to sets a threshold for the number of dots which must appear in a name given to query before an initial absolute query will be made. The default for n is “1”, meaning that if there are any dots in a name, the name will be tried first as an absolute name before any search list elements are appended to it. For example set ndots to 2 as follows, to answer nslookup f1.mail query to get IP for hostname:
## config file - /etc/resolv.conf ##
options ndots:2

Save and close the file.

Test it

Use host command or dig command as follows:

$ host f1
$ host mail
$ dig smtp


  • The search list is currently limited to six domains with a total of 256 characters.

Help /etc/resolv.conf file overwritten by dhclient on a Linux based system

You may find that /etc/resolve.conf is being generated and overwritten by dhcp client, so any changes made to /etc/resolv.conf file will be subsequently overwritten. See how to fix this issue by reading the following tutorial:


Posted by: Vivek Gite

The author is the creator of nixCraft and a seasoned sysadmin, DevOps engineer, and a trainer for the Linux operating system/Unix shell scripting. Get the latest tutorials on SysAdmin, Linux/Unix and open source topics via RSS/XML feed or weekly email newsletter.

4 comment

  1. I am using CentOS 5.3 and for me /etc/resolve.conf is being generated by /sbin/dhclient-script, so any changes done to this file will be subsequently overwritten. I am trying to find a different way to add the search order.

  2. In regards to Hari’s question, I guess this was never answered, but I’ll answer it here because this page appears to be one of the first that pops up when I Google this particular question.

    These instructions work on my CentOS 5.6 workstation.

    The reason /etc/resolv.conf is being overwritten is because you’ve configured your DHCP client to get automatically obtain DNS information from the “provider”, thereby overwriting your changes everytime you reboot or restart your network services.

    To stop this, edit the following file:
    And set “PEERDNS=no”

    You should now be able to update /etc/resolv.conf with additional “search [domain]” lines and it should stick, even after rebooting.

    The following page provides additional information:

    If you’re running KDE, you can go into System > Administration > Network > Devices and double-click the appropriate eth device. Then uncheck “Automatically obtain DNS information from provider”. Go back to the “DNS” tab and add your additional domain suffixes separated by spaces. Save and exit. Restart your network services using “/etc/init.d/network restart” or reboot.

    Hopefully this helps someone.

    Still, have a question? Get help on our forum!