DNS records hold information about domain names, and their associated IP addresses. They are stored in authoritative DNS servers and consist of a series of text files written in DNS syntax, a string of characters that directs the DNS server on what and how to respond to DNS queries.
There are various types of DNS records in DNS zones, and each one has a different use.
An A record is the most commonly used record and is required as its primary purpose is to map out the Fully Qualified Domain Name (FQDN) to the respective IPv4 address. They are mostly used for DNS lookups.
A records can also be used for pointing to a subdomain which also contains the same IP address.
Step 1: Click on the A record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new A record.
Step 3: Provide the details of the new A record, such as name, TTL, date and time, and IP address.
Step 4:
AAAA records, also know as quad A records, is also required but are primarily used for mapping out the domain name to an IPv6 address. An AAAA record serves the same purpose as the A record, except that the A record has IPv4 addresses, while AAAA record has IPv6 addresses.
They are mostly used for DNS lookups for domain names requiring IPv6 addresses. AAAA records are needed for the latest domains created which support IPv6 as the number of domains supporting IPv4 are diminishing.
Step 1: Click on the AAAA record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new AAAA record.
Step 3: Provide the details of the new AAAA record, such as name, TTL, date and time, and IP address.
Step 4: Proceed to save the record by clicking on "Save" or "Save and Continue".
Certificate Authority Authorization (CAA) record details about which certificate authorities (CAs) are valid so they can issue certificates for a domain name. This ensures that only trusted CAs are issuing SSL and TLS certificates for authorized domains, while preventing unauthorized CAs from issuing certificate for malicious domains.
CAA records acts a permit entry for identifying and allowing trustable CAs for reliable certificate issuance.
Step 1: Click on the CAA record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new CAA record.
Step 3: Provide the details of the new CAA record, such as name, TTL, date and time, there are three values in the Add Value section.
Value: This field specifies the domain name of the certificate authority allowed to issue certificates for the zone.
Flag: This field specifies properties or directives associated with the record. Common flag values:
The tag identifies the purpose of the CAA record. Common tags include:
Step 4: Proceed to save the record by clicking on "Save" or "Save and Continue".
CNAME records help map an alias domain name to a canonical domain name. Alias domain names assist users with finding the true/canonical domain name. CNAME records helps by associating multiple alias domain names to a single canonical domain name.
CNAME records are primarily used to simplify DNS management, enhance server load balancing and failover.
Step 1: Click on the CNAME record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new CNAME record.
Step 3: Provide the details of the new CNAME record, such as name, TTL, date and time.
Provide the alias domain that points to the canonical domain in the Host field.
Step 4: Proceed to save the record by clicking on "Save" or "Save and Continue".
Delegate Signature (DS) records are used in the Domain Name System Security Extensions (DNSSEC) for digital signing for DNS information transferred from the server to the client. This helps secure the integrity and authenticity of the DNS response and creates a chain of trust by digitally signing each server.
DS records prevents DNS spoofing and cache poisoning by securing the DNS response.
Step 1: Click on the DS record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new DS record.
Step 3: Provide the details of the new DS record, such as name, TTL, date and time. There are four fields in the Add Record section.
Step 4: Proceed to save the record by clicking on "Save" or "Save and Continue".
MX records are primarily used in the mail servers for routing specific mail servers to handle mails of a specific domain and directing mail to the right mail servers.
When mail is sent to an address of a domain, the mail server will query the nearby DNS resolver for MX record of the recipient's domain. The MX record will provide the address of the recipient's mail server, and the mail will be directed.
Step 1: Click on the MX record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new MX record.
Step 3: Provide the details of the new MX record, such as name, TTL, date and time. There are two fields in the Add Host section.
Host: This field contains the Full Qualified Domain Name (FQDN) of the mail server.
Preference: This field is an integer value that indicates the priority of the mail server. Lower values have higher priority. If multiple MX records exist for a domain, the mail server with the lowest preference value is tried first.
Step 4: Proceed to save the record by clicking on "Save" or "Save and Continue".
Name Server (NS) records are responsible for indicating which servers should be answering DNS queries from a specific domain. They identify the name servers holding DNS records of that domain, and basically direct DNS queries to the appropriate authoritative name servers, thus enhancing the network services of an organization.
Step 1: Click on the NS record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new NS record.
Step 3: Provide the details of the new NS record, such as name, TTL, date and time.
Provide the domain name of the authoritative name server in the Host field.
Step 4: Proceed to save the record by clicking on "Save" or "Save and Continue".
Pointer (PTR) records function in the opposite way compared to the A records. They map IP addresses to the respective domain names. PTR records are primarily used in the reverse DNS lookups for email verification, host and device identification, security and authentication purposes. This ensures that an IP address is associated with the right domain name.
Step 1: Click on the PTR record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new PTR record.
Step 3: Provide the details of the new PTR record, such as name, TTL, date and time.
Provide the domain name the IP address should map to in the System field.
Step 4: Proceed to save the record by clicking on "Save" or "Save and Continue".
Service (SRV) records are used to locate the right servers for specific queries. They provide the details of the hostname and port numbers of the servers, allowing clients to connect with specific services easily. SRV records facilitate service discovery and seamless connection for clients, thus offering flexibility, load balancing, and failover management.
Step 1: Click on the SRV record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new SRV record.
Step 3: Provide the details of the new SRV record, such as name, TTL, date and time. There are three fields in the Add Host field.
Step 4: Proceed to save the record by clicking on "Save" or "Save and Continue".
Text (TXT) records allows network administrators to insert text information into any DNS response. These records contain various types of data and are mostly used for email security and domain ownership verification. For email security, TXT records are used to store public keys in the mail server and are used to digitally sign an email as well as define policies for handling mails that fail Sender Policy Framework (SPF) checks. For domain ownership verification, TXT records are used to prove domain ownership by adding specific value provided by the service into the domain's DNS record.
Step 1: Click on the TXT record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new TXT record.
Step 3: Provide the details of the new TXT record, such as name, TTL, date and time. There are two fields in the Add Value section.
Value: This field contains the actual text data associated with the record. The content of the value field is arbitrary text, often used for various purposes such as verification, authentication, or informational text.
The value you've given will be listed in the Entered Value dropdown field.
Step 4: Proceed to save the record by clicking on "Save" or "Save and Continue".
The HINFO (Host Information) record provides information about the hardware type and operating system of a host. It is used for documentation or network management purposes, but it is rarely used in modern DNS implementations due to potential security risks.
Step 1: Click on the HINFO record of the DNS zone for a domain.
Step 2: On the right side, you can view a "+" sign for adding a record, and a "-" sign for deleting a record. Click the "+" sign to add a new HINFO record.
Step 3: Provide the details of the new HINFO record, such as name, TTL, date and time. There are two field in the Add Value section.
Step 4: Proceed to save the record by clicking on "Save" or "Save and Continue".