Is there a way to find all the aliases of the host?
$ nslookup x
x is an alias for y
y is an alias for z
z has address 192.0.2.45
So if I have z, is there a way of using nslookup/host/dig commands to get x and y too?
Is there a way to find all the aliases of the host?
$ nslookup x
x is an alias for y
y is an alias for z
z has address 192.0.2.45
So if I have z, is there a way of using nslookup/host/dig commands to get x and y too?
No, that is not possible. CNAMEs are unidirectional aliases with no way pointing back.
One exception for very special circumstances: If you can do a zone transfer, you could get all host names for a domain and thus look for CNAMES pointing to a specific host.
A CNAME record is just a redirection to another record. When the chain of redirects reaches an A or AAAA record, the client gets one or more addresses that an administrator of the A record configured. These addresses are, however, at the discretion of the person and don't even have to all correspond to the same machine. They are usually used to distribute load.
To attempt to get some more information about the IP address you received, you can try
dig -x 1.1.1.1
This will try to convert an IP back to a domain name using reverse DNS. This can be also configured arbitrarily (so it's often misconfigured) and the address returned is often just for giving a human more information as to who to complain to when there are issues, rather than something you enter into your browser.