Check DNS records instantly: A, AAAA, MX, TXT, CNAME, NS, SOA, CAA, PTR. With SPF/DKIM/DMARC validation and change detection. No signup required.
Use our free DNS record checker to instantly view all DNS records for any domain. Query A records, MX records, TXT records, CNAME records, NS records, SOA records, CAA records, and PTR records in seconds.
DNS records are configuration instructions that control how your domain works on the internet. Each record type serves a specific purpose. Below is a comprehensive guide to all DNS record types supported by our checker.
Maps a domain name to an IPv4 address (e.g: 192.168.1.1). This is the most fundamental DNS record type and determines where website traffic is routed.
Use case: Web server hosting, domain pointing. Every website lookup uses A records.
IPv6 version of A records. Maps a domain name to an IPv6 address (e.g: 2001:db8::1). Essential for modern IPv6-enabled infrastructure.
Use case: IPv6-enabled hosting, future-proofing your DNS.
Specifies which mail servers receive emails for your domain. Includes priority levels for redundancy. Must have at least one valid MX record for email delivery.
Use case: Email hosting, mail server routing, G Suite, Office 365.
Creates an alias (nickname) for another domain. Commonly used for subdomains like www, blog, or api to point to hosting services.
Use case: Subdomain routing, CDN setup (Cloudflare, AWS CloudFront), third-party services.
Stores arbitrary text data. Primarily used for email authentication (SPF, DKIM, DMARC) and domain verification. Critical for email deliverability and domain ownership proof.
Use case: SPF records, DKIM signatures, DMARC policies, Google/Microsoft domain verification.
Specifies the authoritative DNS servers for your domain. Controls who manages your DNS configuration. These nameservers must match your registrar settings.
Use case: DNS provider setup, domain delegation, changing DNS hosts.
Defines the primary nameserver, serial number, and zone timing parameters (refresh, retry, expire, minimum TTL). Essential for zone transfers and DNS operations.
Use case: DNS zone administration, AXFR zone transfers, DNS management.
Controls which Certificate Authorities (CAs) can issue SSL/TLS certificates for your domain. Critical security feature to prevent unauthorized certificate issuance.
Use case: SSL certificate security, preventing certificate hijacking, compliance requirements.
Maps IP addresses back to domain names (reverse lookup). Used for email authentication and identifying which domain an IP belongs to.
Use case: Email authentication, server identification, reverse DNS validation.
Email authentication is critical for preventing spoofing, improving deliverability, and protecting your domain reputation. Our DNS checker includes built-in validation for all three email authentication protocols.
Purpose: Specifies which mail servers are authorized to send emails from your domain.
Format: Published as a TXT record starting with v=spf1
Validation: Our tool checks for proper SPF syntax and identifies common issues:
Recommendation: Use hard fail (-all) for maximum security.
Purpose: Uses cryptographic signatures to verify email authenticity and prevent tampering.
Format: Published as TXT records at selector._domainkey.yourdomain.com
How it works: Mail servers sign outgoing emails with a private key. Recipients verify the signature using your public key in DNS.
Common selectors: google, sendgrid, mailchimp, default (varies by email provider)
Validation: Our tool detects if DKIM records exist and validates the key format.
Purpose: Enforces SPF and DKIM with a policy that tells receivers how to handle authentication failures.
Format: Published as TXT record at _dmarc.yourdomain.com
Policies:
Reporting: Receive reports on authentication results at configured email addresses.
| Feature | SPF | DKIM | DMARC |
|---|---|---|---|
| Type | Authorization | Signing | Policy |
| Record Type | TXT | TXT | TXT |
| Verification | Checks IP | Verifies signature | Enforces SPF/DKIM |
| Required | Recommended | Recommended | Essential |
Our unique change detection feature automatically tracks modifications to your DNS records between lookups. See exactly what changed, when it changed, and enable historical trend analysis for your domain's DNS configuration.
When you look up a domain, our tool saves a snapshot of all its DNS records. On your next lookup of the same domain, we automatically compare the current records with the previously saved snapshot. This reveals:
See which DNS records were recently added to your domain. Useful for tracking new services, subdomains, or infrastructure changes.
Identify which records were deleted. Critical for diagnosing service failures or security issues.
Know exactly how long ago your DNS records last changed. Useful for tracking propagation time and monitoring configuration drift.
Keep a local history of all your DNS lookups. Perfect for auditing changes, tracking migrations, and troubleshooting DNS problems.
Type the domain name (e.g: google.com) in the search box at the top. Do NOT include http://, https://, or www.
Choose which DNS record type to check: A, AAAA, MX, TXT, CNAME, NS, SOA, CAA, PTR, or "All" for everything.
Our tool queries multiple DNS resolvers in real-time and displays results in 1-2 seconds.
View all configured records with automatic email authentication analysis, change detection, and security recommendations.
For technical users, you can also check DNS records using command-line tools:
# Check all DNS records
nslookup -type=any google.com
# Check A records
nslookup google.com
# Check MX records
nslookup -type=MX google.com
# Check TXT records (includes SPF)
nslookup -type=TXT google.com
# Check all DNS records
dig google.com ANY
# Check specific record type
dig google.com MX
# Check with short output
dig google.com +short
# Check SOA records
dig google.com SOA
# Check CAA records (SSL certificate authorization)
dig google.com CAA
Verify DNS configuration after changes. Track when DNS records propagated globally. Diagnose why websites or email aren't working after server migration.
Check MX records are configured correctly. Validate SPF, DKIM, and DMARC records to prevent emails going to spam. Diagnose bounced emails.
Query CAA records to verify which Certificate Authorities can issue SSL certificates. Detect unauthorized SSL certificates. Enforce certificate issuance restrictions.
Verify A records point to your new server IP. Check nameservers match your new DNS provider. Track propagation across regions.
Validate CNAME records for Cloudflare, AWS CloudFront, Akamai. Verify load balancer aliases. Check subnet routing.
Review TTL values in SOA records. Check nameserver configuration. Identify redundant or misconfigured records affecting performance.
Track DNS changes over time with our automatic change detector. Monitor for unauthorized modifications. Maintain configuration history.
Audit DNS configuration for compliance requirements. Verify domain delegation. Check security record setup (CAA, DMARC).
Enter your domain in our DNS checker above and click "Lookup DNS Records". Our tool queries authoritative nameservers and displays all A, AAAA, MX, TXT, CNAME, NS, SOA, CAA, and PTR records within seconds. No technical knowledge required.
Our online DNS checker is user-friendly and works in any browser without technical setup. Command-line tools (nslookup, dig) provide more control but require terminal access. Both query the same DNS data. Our tool adds visual analysis and automatic email authentication validation.
DNS propagation typically takes 24-48 hours globally. Some changes appear within minutes depending on TTL (Time To Live) settings. Our tool lets you check current propagation status across multiple resolvers. Use our change detection feature to track when DNS changes reach different geographic regions.
No. Everything is processed in your browser. Domains you check are NOT stored on our servers or tracked. DNS records are queried in real-time from authoritative nameservers. Your privacy is 100% guaranteed.
A records map domains to IPv4 addresses (e.g: 192.168.1.1). AAAA records map domains to IPv6 addresses (e.g: 2001:db8::1). IPv6 is more modern and provides more address space. Both can coexist. Our checker displays both.
MX (Mail Exchange) records specify which mail servers receive emails for your domain. They include a priority level (lower number = higher priority). You need at least one valid MX record for email delivery. Multiple MX records provide redundancy so email continues if one server fails.
SPF authorizes which servers can send from your domain. DKIM signs emails cryptographically. DMARC enforces both with a policy. Together, they prevent attackers from sending fake emails using your domain. Our tool validates all three and identifies configuration issues.
SOA (Start of Authority) records define zone ownership and timing parameters. They contain: primary nameserver, serial number (for tracking changes), refresh interval (how often replicas sync), retry interval (if sync fails), expire time (when to stop responding), and minimum TTL. Critical for DNS zone management.
CAA (Certification Authority Authorization) records control which Certificate Authorities can issue SSL/TLS certificates for your domain. Setting CAA records prevents unauthorized certificate issuance. Our tool checks CAA configuration and lists authorized CAs.
PTR (Pointer) records map IP addresses back to domain names (reverse lookup). Reverse DNS is used by mail servers to verify sender authenticity. Without proper PTR records, your emails may be flagged as spam. Also used for server identification.
Yes. DNS records are public information. You can check any domain's DNS records. Use it to investigate competitors, verify third-party services, or diagnose shared hosting issues.
Our tool automatically saves a snapshot of DNS records each time you look up a domain. On your next lookup of the same domain, we compare current records with the saved snapshot. We show you what was added, removed, and when the last change occurred. Perfect for tracking migrations and monitoring for unauthorized changes.
Save and compare DNS records from previously checked domains. Automatic change detection alerts you to modifications. Perfect for monitoring domain health and tracking configuration changes over time.