DNS Record Check for Domain
Retrieves information about DNS resource records for a domain name.DNS – is a domain name system for retrieving information about domains. It is most commonly used to obtain an IP address from a domain name.
Main (frequently used) record types:- A – This is an address record used to map a domain name to an IP address (IPv4) of a server.
- AAAA – An address record used to map a domain name to an IP address (IPv6) of a server.
- CNAME – Canonical name for an alias.
- MX – The address of a mail gateway for a domain. It consists of two parts: a priority (the higher the number, the lower the priority) and the address of the host. It helps the mail agent understand which server to deliver emails to when sending electronic messages to a specific domain.
- NS – The address of a node responsible for the domain zone. It is critically important for the proper functioning of the domain name system.
- TXT – A record for arbitrary data. It is often used for SPF, allowing the domain owner to specify a list of servers authorized to send email messages with return addresses in this domain. Also used for DKIM – an email authentication method designed to detect email spoofing. This method allows the recipient to verify that the email was truly sent from the claimed domain. DKIM simplifies combating forged sender addresses, which are commonly used in phishing emails and spam.
If you want to check specific TXT records for a domain, such as a TXT record for DKIM, you need to prepend the domain with the value in the Host field for this TXT record. For example, if the field contains mail._domainkey, then to retrieve this record for the domain yandex.ru, the query should be mail._domainkey.yandex.ru. - SOA – Start of Authority record. The SOA record defines the primary server that manages the domain zone. It contains parameters for updates and administration.
- CAA – Certification Authority Authorization. The CAA record specifies which Certificate Authorities (CA) are allowed to issue SSL certificates for the domain.
- SRV – Service record. The SRV record specifies servers and ports for certain services (SIP, XMPP, LDAP).
- DNSKEY – DNS security key. The DNSKEY record contains public keys for DNSSEC, protecting domain records from spoofing.
- DS – Delegation Signer. The DS record confirms the authenticity of the child zone in DNSSEC.
- TLSA – TLS authentication. The TLSA record allows binding a certificate to a domain, enhancing TLS security (DANE).
- NAPTR – Naming Authority Pointer. The NAPTR record is used in SIP, VoIP, ENUM to help route requests dynamically.
DNS Tracing – is the process of analyzing the route of a DNS query from the client to the final server. It helps identify delays, errors, and routing issues, as well as determine which DNS servers participate in domain resolution.
Main stages of DNS tracing:
- Query to the root DNS servers (.). They indicate which servers handle top-level domains (such as .com, .org).
- Query to the top-level domain servers (TLD), such as .org. These servers pass control to the authoritative domain servers.
- Query to the authoritative servers (NS) of the target domain. They provide final data, such as IP addresses (A), mail server records (MX), text records (TXT), and others. (In our functionality, the final data will be NS records, since other types of data can be obtained by enabling the corresponding option.)