DNS Record Lookup
Query DNS records for any domain including A, AAAA, MX, TXT, NS, CNAME, and SOA record types.
How to Use the DNS Lookup Tool
- Enter the domain name you want to query (e.g., example.com).
- Select the record type to query: A, AAAA, MX, TXT, NS, CNAME, SOA, or All.
- The tool queries DNS servers and displays the results with TTL values.
- Review the records for troubleshooting, verification, or security analysis.
Understanding DNS Records
The Domain Name System (DNS) is the internet's directory service, translating human-readable domain names into IP addresses and providing other essential routing information. DNS records are stored in authoritative name servers and cached by resolvers worldwide. Each record type serves a specific purpose: A records map domains to IPv4 addresses, AAAA to IPv6, MX records direct email delivery, TXT records store arbitrary text (used for SPF, DKIM, DMARC, and domain verification), NS records delegate DNS authority, CNAME records create aliases, and SOA records contain zone administration metadata. DNS is a foundational protocol for the internet, and understanding DNS records is essential for web development, email configuration, and network troubleshooting. When a website is not loading, checking A records verifies that the domain points to the correct server. MX records must be correctly configured for email delivery. TXT records are critical for email authentication (SPF, DKIM, DMARC) that prevents spoofing and improves deliverability. In security, DNS reconnaissance is one of the first steps in any assessment. DNS records can reveal the infrastructure behind a target: hosting providers, CDNs, email services, load balancers, and third-party integrations. Zone transfer vulnerabilities (AXFR) can expose the entire DNS zone. DNS TXT records sometimes contain sensitive information like internal server names or API keys. DNSSEC adds cryptographic signatures to prevent DNS spoofing, while DNS over HTTPS (DoH) and DNS over TLS (DoT) encrypt queries to prevent eavesdropping.
Frequently Asked Questions
A records (IPv4 address), AAAA records (IPv6), MX records (mail servers), TXT records (SPF, DKIM, domain verification), NS records (name servers), and CNAME records (aliases) are the most commonly used. SOA records contain zone metadata. Each serves a critical role in internet routing and service discovery.
DNS propagation is the time it takes for DNS changes to spread across all DNS resolvers worldwide. Each DNS record has a TTL (Time To Live) value that tells resolvers how long to cache it. After a change, resolvers continue serving the old record until their cached copy expires. Propagation typically takes minutes to 48 hours depending on TTL values.
These TXT-based records prevent email spoofing. SPF specifies which servers can send email for your domain. DKIM adds a cryptographic signature to verify email integrity. DMARC ties SPF and DKIM together with a policy for handling failures. Together, they protect your domain from being used in phishing campaigns and improve email deliverability.
DNS records reveal infrastructure details: A records show server IPs, MX records identify email providers, NS records reveal DNS hosting, and TXT records may contain sensitive information. Subdomain enumeration through DNS can uncover forgotten servers, staging environments, and internal tools. Security teams should audit DNS records regularly and avoid exposing internal hostnames.