You don't have javascript enabled. Please enable javascript to use this website.
DNS Lookup / Online NsLookup

DNS Lookup / Online NsLookup

Find all DNS records for a domain name

More Tools
All DNS Records Of Domain Reverse DNS Lookup CNAME Lookup MX Lookup NS Lookup SPF Lookup TXT Lookup

Online NSLookup Tool - See all the DNS records for a website

An online nslookup tool is a web-based utility that allows you to query the Domain Name System (DNS) to retrieve various DNS records for a specified domain name.

How Does a DNS Lookup Tool Work?

  1. User Input: You enter a domain name (e.g., "example.com") into the online DNS lookup tool's interface.
  2. Initiating the Query: The online tool, acting as a DNS client, prepares a DNS query. This query specifically asks for the DNS records associated with the domain name you provided. By default, it often looks for the "A" record, which maps a domain to an IPv4 address. However, many tools allow you to specify other record types like MX, NS, CNAME, TXT, etc.
  3. Contacting a DNS Resolver: The DNS query is then sent to a DNS resolver. This resolver is a server that's responsible for looking up DNS records. Typically, your computer or network is configured to use a specific DNS resolver, often provided automatically by your Internet Service Provider (ISP). Online DNS lookup tools use their own set of DNS resolvers to perform the lookup. These could be the same as your ISP's or public DNS resolvers like Google Public DNS (8.8.8.8, 8.8.4.4) or Cloudflare DNS (1.1.1.1, 1.0.0.1).
  4. Resolver's Cache Check: The DNS resolver receives the query and first checks its local cache. If the resolver has recently looked up the DNS records for the same domain name, and the cached information hasn't expired (based on the Time-To-Live or TTL value associated with the record), it will directly return the cached records to the online DNS lookup tool. This significantly speeds up the process for frequently accessed domains.
  5. Recursive Query (if not in cache): If the information isn't in the resolver's cache or has expired, the resolver initiates a recursive query to find the answer:
    1. Querying Root Name Servers: The resolver starts by querying one of the Internet's root name servers. These servers are at the top of the DNS hierarchy and know the addresses of the Top-Level Domain (TLD) name servers. For example, for "example.com", the root server would direct the resolver to the TLD name server responsible for ".com" domains.
    2. Querying TLD Name Servers: The resolver then queries the appropriate TLD name server (e.g., the ".com" TLD server). The TLD server doesn't hold the specific IP address for "example.com" but knows the addresses of the authoritative name servers for the "example.com" domain. These are the servers that the domain owner has specifically configured to manage the DNS records for their domain.
    3. Querying Authoritative Name Servers: The resolver next contacts one of the authoritative name servers for "example.com". These servers hold the actual DNS records for the domain, including the A record (mapping to the IPv4 address), AAAA record (mapping to the IPv6 address), MX records (for mail servers), NS records (for name servers), and other record types.
    4. Receiving the DNS Records: The authoritative name server responds to the resolver with the requested DNS records (e.g., the A record containing the IP address).
  6. Resolver Returns the Result: The DNS resolver receives the requested DNS records from the authoritative name server. It then caches these records based on their TTL value to serve future requests more quickly. Finally, the resolver sends the retrieved DNS records back to the online DNS lookup tool.
  7. Displaying the Results: The online DNS lookup tool receives the DNS records from the resolver and parses the information. It then displays the results to you in an organized and readable format within your web browser. This typically includes the IP address (for an A or AAAA record) and other requested record details, such as the hostname and target for a CNAME record, or the priority and mail server for an MX record. Some tools might also provide additional information like the TTL value, the record type, and the name server that provided the response.

What is DNS?

The Domain Name System (DNS) is an important protocol part of the web's infrastructure, serving as the Internet's phone book. This protocol is implemented by multiple DNS servers located all over the world.

What is a DNS Server?

A DNS Server is a server which translates and resolves human-memorable domain names (example.com) into the corresponding numeric Internet Protocol (IP) addresses (93.184.216.34). More technically, a DNS Server stores a lot of information about a given domain name known as DNS Records and responds with answers to queries against its database.

What is a DNS Record?

A DNS Record is a piece of information about a domain name , such as:
  • A Record (IPv4 address)
  • AAAA Record (IPv6 Address)
  • NS Record (Name Server)
  • MX Record (Mail Exchanger)
  • TXT Record (Text Data)

What can a DNS Lookup be used for?

  1. Resolving Domain Names to IP Addresses: This is the fundamental use. When you type a website address into your browser, a DNS lookup translates that human-readable name into the numerical IP address that computers use to locate the server hosting the website.
  2. Troubleshooting DNS Issues:
    • Verifying DNS Propagation: After making changes to DNS records, you can use a lookup tool to check if those changes have been updated across different DNS servers globally.
    • Identifying Incorrect Configurations: If a website or email isn't working, a DNS lookup can help pinpoint if the DNS records are configured correctly (e.g., wrong IP address, incorrect mail server).
    • Diagnosing Connectivity Problems: If you can't reach a website, a failed DNS lookup can indicate a problem with the DNS resolution process itself.
  3. Checking Mail Server (MX) Records: A DNS lookup can retrieve the MX records for a domain, showing which servers are responsible for handling email for that domain. This is useful for:
    • Verifying Email Setup: Ensuring email is routed correctly.
    • Identifying Potential Email Delivery Issues: If emails aren't being received, incorrect MX records could be the cause.
  4. Verifying Name Server (NS) Records: You can check which name servers are authoritative for a domain. This is important for ensuring the correct servers are managing the DNS records.
  5. Examining Other DNS Records: DNS lookups can retrieve various other record types, which can be used for different purposes:
    • CNAME Records: Checking if a domain or subdomain is aliased to another.
    • TXT Records: Inspecting TXT records, which are often used for verification (e.g., SPF, DKIM for email authentication) or to store other domain-related information.
    • SOA Records: Viewing administrative information about the DNS zone.
    • AAAA Records: Checking the IPv6 address associated with a domain.
    • SRV Records: Identifying the location of specific services.
  6. Security Analysis:
    • Checking SPF, DKIM, and DMARC Records: These TXT records help verify the authenticity of emails sent from a domain and can help prevent spoofing.
    • Identifying Potential Redirections: Examining CNAME records can reveal if a domain is being redirected unexpectedly.
  7. Network Management: Network administrators use DNS lookups to:
    • Verify DNS configurations.
    • Troubleshoot network connectivity.
    • Identify the IP addresses of servers.
  8. Information Gathering: You can gain insights into the infrastructure of a website or online service by looking up its DNS records.
  9. Reverse DNS Lookups (Indirectly): While a standard DNS lookup goes from domain to IP, knowing the IP address from a forward lookup allows you to use a reverse DNS lookup tool to potentially find the domain name associated with that IP. This can be useful for identifying the owner of a server.

How can I do a NSLookup Online?

  • Open the DNS Lookup Tool
  • Enter a domain in the space provided
  • Click on the "Find DNS Records" button
The DNS Lookup Tool will then search and find all domain DNS records available in the selected DNS Servers and gives you the result.

How do I run a DNS Lookup in Unix/Linux?

To perform a DNS Lookup, you must use the linux NSLOOKUP command-line utility:
For a Domain DNS records Lookup: nslookup [domain] (Ex: nslookup google.com)
To get a Domain all available DNS records: nslookup -type=any [domain] (Ex: nslookup -type=any google.com)
Lookup for an A record (IPv4 Address): nslookup -type=a [domain]
Lookup for an AAAA record (IPv6 Address): nslookup -type=aaaa [domain]
Lookup for a NS record (Name Server): nslookup -type=ns [domain]
Lookup for a MX record (Mail Exchange): nslookup -type=mx [domain]
Lookup for a SOA record (Start of authority): nslookup -type=soa [domain]
Lookup for a TXT record (TXT record): nslookup -type=txt [domain]

How do I run a DNS Lookup in Windows?

To perform a DNS Lookup, you must use the command nslookup
The nslookup command queries the DNS servers in two modes: Interactive mode and noninteractive mode.
For a Domain DNS records Lookup: nslookup [domain] (Ex: nslookup google.com)

What is a DNS Checker / DNS Propagation Checker?

A DNS Checker also known as a DNS Propagation Checker, is an online tool that allows you to check the current state of DNS records for a specific domain name from multiple DNS servers located in different geographic locations around the world.

List of Commonly Used DNS Record types:


TypeDescriptionFunction
A IPv4 Address record Returns a 32-bit IPv4 address, most commonly used to map hostnames to an IP address of the host, but it is also used for DNSBLs, storing subnet masks in RFC 1101, etc.
AAAA IPv6 address record Returns a 128-bit IPv6 address, most commonly used to map hostnames to an IP address of the host.
AFSDB AFS database record Location of database servers of an AFS cell. This record is commonly used by AFS clients to contact AFS cells outside their local domain. A subtype of this record is used by the obsolete DCE/DFS file system.
CAA Certification Authority Authorization DNS Certification Authority Authorization, constraining acceptable CAs for a host/domain
CERT Certificate record Stores PKIX, SPKI, PGP, etc.
CNAME Canonical name record Alias of one name to another: the DNS lookup will continue by retrying the lookup with the new name.
DHCID DHCP identifier Used in conjunction with the FQDN option to DHCP
DNAME Delegation name record Alias for a name and all its subnames, unlike CNAME, which is an alias for only the exact name. Like a CNAME record, the DNS lookup will continue by retrying the lookup with the new name.
DNSKEY DNS Key record The key record used in DNSSEC. Uses the same format as the KEY record.
DS Delegation signer The record used to identify the DNSSEC signing key of a delegated zone
IPSECKEY IPsec Key Key record that can be used with IPsec
LOC Location record Specifies a geographical location associated with a domain name
MX Mail exchange record Maps a domain name to a list of message transfer agents for that domain
NAPTR Naming Authority Pointer Allows regular-expression-based rewriting of domain names which can then be used as URIs, further domain names to lookups, etc.
NS Name server record Delegates a DNS zone to use the given authoritative name servers
NSEC Next Secure record Part of DNSSEC—used to prove a name does not exist. Uses the same format as the (obsolete) NXT record.
NSEC3 Next Secure record version 3 An extension to DNSSEC that allows proof of nonexistence for a name without permitting zonewalking
NSEC3PARAM NSEC3 parameters Parameter record for use with NSEC3
PTR PTR Resource Record Pointer to a canonical name. Unlike a CNAME, DNS processing stops and just the name is returned. The most common use is for implementing reverse DNS lookups, but other uses include such things as DNS-SD.
RP Responsible Person Information about the responsible person(s) for the domain. Usually an email address with the @ replaced by a .
RRSIG DNSSEC signature Signature for a DNSSEC-secured record set. Uses the same format as the SIG record.
SOA Start of [a zone of] authority record Specifies authoritative information about a DNS zone, including the primary name server, the email of the domain administrator, the domain serial number, and several timers relating to refreshing the zone.
SRV Service locator Generalized service location record, used for newer protocols instead of creating protocol-specific records such as MX.
SSHFP SSH Public Key Fingerprint Resource record for publishing SSH public host key fingerprints in the DNS System, in order to aid in verifying the authenticity of the host. RFC 6594 defines ECC SSH keys and SHA-256 hashes. See the IANA SSHFP RR parameters registry for details.
TLSA TLSA certificate association A record for DANE. RFC 6698 defines "The TLSA DNS resource record is used to associate a TLS server certificate or public key with the domain name where the record is found, thus forming a 'TLSA certificate association'".
TSIG Transaction Signature Can be used to authenticate dynamic updates as coming from an approved client, or to authenticate responses as coming from an approved recursive name server[13] similar to DNSSEC.
TXT Text record Originally for arbitrary human-readable text in a DNS record. Since the early 1990s, however, this record more often carries machine-readable data, such as specified by RFC 1464, opportunistic encryption, Sender Policy Framework (SPF), DKIM, DMARC, DNS-SD, etc.
URI Uniform Resource Identifier Can be used for publishing mappings from hostnames to URIs.

Online NSLookup FAQ

  1. Can a DNS Lookup Tool help me find the location of a website server?

    A standard DNS lookup primarily returns the IP address of the server. While you can use online IP address lookup tools to get a general geographic location based on the IP address, this might not be precise and could point to the hosting provider's data center location, not necessarily the website owner's physical location.

  2. What does "non-authoritative answer" mean in DNS lookup results?

    A "non-authoritative answer" indicates that the DNS resolver providing the information obtained it from its cache, rather than directly from the authoritative name servers for the domain. This is normal and part of how DNS efficiently handles requests. An "authoritative answer" comes directly from the name servers responsible for the domain's DNS records.

  3. Why might I get different IP addresses for the same domain from different DNS Lookup Tools or at different times?

    There are several reasons for this:

    • DNS Propagation: If DNS records have recently been updated, different DNS servers might still have cached the old information.
    • Content Delivery Networks (CDNs): Many websites use CDNs, which distribute content across multiple servers in different geographic locations. A DNS lookup might return the IP address of the CDN server closest to your location.
    • Load Balancing: Some websites use multiple servers to handle traffic. DNS might be configured to return different IP addresses to distribute the load.
    • IPv4 vs. IPv6: You might get an IPv4 address (using A records) or an IPv6 address (using AAAA records) depending on your network and the website's configuration.

  4. Can a DNS Lookup Tool help me diagnose email delivery problems?

    Yes, by looking up the MX records for the sender's domain, you can verify if the correct mail servers are listed. You can also check for the presence and validity of SPF, DKIM, and DMARC TXT records, which are crucial for email authentication and can impact deliverability.

  5. What is DNS poisoning or DNS spoofing, and can a DNS Lookup Tool prevent it?

    DNS poisoning or spoofing is a type of cyberattack where malicious actors inject false DNS records into a DNS resolver's cache, potentially redirecting users to malicious websites. A standard DNS Lookup Tool cannot prevent DNS poisoning. Security measures like DNSSEC (Domain Name System Security Extensions) are designed to add a layer of authentication to the DNS system to help prevent such attacks.

  6. Are there any privacy concerns when using online DNS Lookup Tools?

    Generally, using a standard online DNS Lookup Tool doesn't pose significant privacy risks. The queries are similar to what your own computer does when you access websites. However, be mindful of the website hosting the tool and its privacy policies, as they might log your IP address or the domains you look up.

  7. What is the Time-To-Live (TTL) value I see in DNS lookup results?

    The TTL (Time-To-Live) value specifies how long (in seconds) a DNS resolver is allowed to cache a DNS record before it must query the authoritative name servers again for an updated record. Lower TTL values mean faster propagation of changes but can increase the load on authoritative servers.

  8. Can I perform a DNS lookup for an IP address to find the associated domain name?

    Yes, this is called a reverse DNS lookup. While standard DNS lookups go from domain to IP, reverse DNS lookups attempt to find the domain name associated with a given IP address. This is done by querying the PTR (Pointer) record. Not all IP addresses have corresponding PTR records.

  9. Why might a DNS Lookup Tool return "No records found"?

    This could happen for several reasons:

    • The domain name might be newly registered and the DNS records haven't been fully propagated yet.
    • There might be a typo in the domain name you entered.
    • The domain might not have any records of the type you are querying (e.g., querying for MX records on a domain that doesn't handle email directly).
    • There could be a temporary issue with the DNS servers being queried.
    • In rare cases, there might be an issue with the domain's DNS configuration.