Advanced DNS Lookup
Instantly query any DNS record type for any domain — free, fast, and secure.
Enter a domain to begin
Supports all major record types: A, MX, TXT, NS, CNAME, SOA, PTR & more
Querying DNS servers...
No records found
How To Use the DNS Lookup Tool
Enter Domain
Type the domain name (e.g. google.com). For PTR lookups, enter an IP address.
Select Type
Choose a specific DNS record type or leave it on "ALL" for a comprehensive scan.
Lookup
Click search. The tool queries global DoH servers securely and instantly.
Analyze
Review TTLs, IPs, and values. Copy rows individually or export to JSON.
Key Features
13 Record Types Supported
Query A, AAAA, CNAME, MX, TXT, NS, SOA, PTR, SRV, CAA, DNSKEY, DS, and NAPTR records all at once.
Live DoH Queries
Runs entirely via secure DNS over HTTPS (DoH) API. No server caching, providing live real-time network truth.
JSON Export
Easily export your entire domain DNS footprint as a formatted JSON file for system audits and documentation.
Why Use Toolszu DNS Lookup?
The fastest, most reliable tool for querying global DNS configurations without local cache interference.
- No Server Caching: Many tools show outdated DNS because they rely on their own server caches. We use direct DNS over HTTPS (DoH) to fetch the absolute latest live records globally.
- Deep Diagnostic Insights: Easily troubleshoot email deliverability (MX, TXT/SPF/DKIM) or security configurations (CAA, DNSKEY, DS) in a highly readable format.
- Privacy First Design: Your queries are performed strictly in your browser via encrypted channels. We do not log, track, or save the domains you are investigating.
- One-Click 'ALL' Query: Stop checking records one by one. Our unique 'ALL' query runs parallel requests to instantly build a complete profile of a domain's DNS zone.
DNS TTL Reference Guide
The TTL (Time To Live) value tells caching servers (like your ISP) how long they should hold onto a DNS record before requesting a fresh copy. Use this table to understand the TTL values shown in your lookup results.
| TTL Value | Duration | Best Used For |
|---|---|---|
| 60 | 1 minute | Active migrations, emergency failovers, and highly dynamic IP setups. Generates heavy query loads. |
| 300 | 5 minutes | Pre-migration preparation. Allows quick fallback if a server move or IP change fails. |
| 900 | 15 minutes | Frequently updated subdomains or load-balanced infrastructure endpoints. |
| 3600 | 1 hour | Standard default for most A, AAAA, and CNAME records. Good balance of speed and cache load. |
| 86400 | 24 hours | Stable infrastructure records that rarely change, such as MX, NS, and SOA records. |
Pro Tip: Always lower your TTL to 300 at least 24 hours before migrating your website to a new host! Once the migration is verified, raise it back up to 3600.
Frequently Asked Questions
A DNS Lookup is the process of querying the Domain Name System (DNS)—essentially the phonebook of the internet—to retrieve specific records associated with a domain name. These records contain instructions on where to send web traffic, how to route emails, and security validations.
DNS changes are subject to "propagation." Caching by ISPs and DNS resolvers worldwide means it can take anywhere from a few minutes up to 48 hours for new records to update globally. The TTL (Time To Live) value of your previous records controls how long they stay cached by local networks.
An A (Address) record maps a domain name directly to its IPv4 address (e.g., 192.168.1.1). It is the most fundamental DNS record, used to point your domain to the actual physical server hosting your website.
While an A record maps a domain to a 32-bit IPv4 address, an AAAA record maps it to a newer 128-bit IPv6 address. Both serve the exact same routing purpose, but AAAA is required for modern IPv6 network compatibility as older IPv4 addresses run out.
A CNAME (Canonical Name) record is an alias. Instead of pointing to an IP address, it points one domain to another domain name. It is frequently used to point a subdomain like 'www' to the root domain, or to route traffic to external services like Shopify or Cloudflare.
To ensure emails are delivered properly and avoid spam folders, you must verify your MX Records (which route incoming mail to providers like Google Workspace or Outlook) and your TXT Records (which should contain properly formatted SPF, DKIM, and DMARC policies).
TXT (Text) records store machine-readable text data in your DNS zone. They are primarily used for domain ownership verification (proving to Google Search Console or Facebook that you own the domain) and implementing email anti-spoofing security frameworks.
NS (Name Server) records delegate a domain to a set of authoritative DNS servers. When someone looks up your website, the internet uses the NS records to know exactly which company (like GoDaddy, Cloudflare, or Route53) holds your actual A and MX records.
A PTR (Pointer) record does the exact opposite of an A record: it maps an IP address back to a domain name. It is heavily used by email servers to perform reverse lookups, verifying the sender's identity to block spam and phishing attacks.
CAA (Certification Authority Authorization) records are a vital security feature. They specify exactly which Certificate Authorities (like Let's Encrypt or DigiCert) are permitted to issue SSL certificates for your domain, preventing unauthorized SSL generation by hackers.
These records are used to facilitate DNSSEC (DNS Security Extensions). They hold public cryptographic keys and hashes that verify your DNS records haven't been tampered with, intercepted, or hijacked in transit by malicious actors.
Yes, Toolszu's DNS Lookup tool is 100% free to use with no hidden limits or accounts required. It queries live DNS over HTTPS directly from your browser for maximum speed and accuracy.