DNS Record Types Reference
Complete reference for all DNS record types: A, AAAA, CNAME, MX, TXT, NS, SPF, DKIM, DMARC, SRV, CAA, and more — with format, examples, and TTL guidance.
16 record types
Maps a hostname to an IPv4 address.
Maps a hostname to an IPv6 address.
Creates an alias from one domain name to another (the canonical name). The alias inherits all records of the target.
Specifies the mail server(s) responsible for accepting email for the domain, with a priority value.
Stores arbitrary text data. Used for domain verification, SPF, DKIM, and DMARC email authentication.
Delegates a DNS zone to an authoritative name server.
Contains administrative information about a DNS zone: primary NS, admin email, serial number, and refresh timers.
Maps an IP address back to a hostname (reverse DNS). Used in reverse lookup zones (in-addr.arpa / ip6.arpa).
Specifies the hostname and port for a specific service, with priority and weight for load balancing.
Specifies which certificate authorities (CAs) are allowed to issue SSL/TLS certificates for the domain.
Specifies which mail servers are authorized to send email on behalf of the domain. Published as a TXT record.
Publishes a public key used to verify cryptographic signatures on outgoing email. Published as a TXT record at a selector subdomain.
Defines the policy for handling emails that fail SPF or DKIM checks, and where to send reports.
A non-standard but widely supported record type that lets you CNAME the zone apex (root domain). Resolves the target and returns its A/AAAA.
Allows a DNS name to be rewritten using regex rules, then looked up again. Used in VoIP (ENUM) and URI routing.
Associates a TLS certificate or public key with a domain name and port (DANE). Allows certificate pinning via DNS.
What Are DNS Record Types?
DNS (Domain Name System) records are entries in a DNS zone file that tell resolvers how to handle queries for a domain. Each record type serves a specific purpose: A records map hostnames to IPv4 addresses, MX records route email, TXT records store text data for verification and authentication, and so on. Understanding DNS record types is essential for configuring domains, deploying applications, and troubleshooting connectivity issues.
How to Use This Reference
- Search by record type (e.g.,
MX), use case (e.g.,email), or description keyword - Filter by category: address, mail, authority, security, service, etc.
- Click any record card to expand the full format, example, and use cases
- Copy the example record with one click to use as a template
Features
- 16 DNS record types across 7 categories
- Full format specification for each record type
- Realistic examples with TTL values
- Common use cases for each record type
- Typical TTL recommendations
- Important notes and gotchas (e.g., CNAME restrictions, SOA format)
FAQ
What is TTL and how should I set it?
TTL (Time To Live) is how long resolvers cache a DNS record (in seconds). Lower values (300 s = 5 min) mean faster propagation when you change a record, but more DNS queries. Higher values (86400 s = 24 h) reduce load but slow down changes. Before a planned migration, lower TTL to 300 s a day in advance.
Why can't I use a CNAME at the root domain?
RFC 1034 prohibits CNAME records from coexisting with other records at the same name. The zone apex must have SOA and NS records, so CNAME is forbidden there. Use ALIAS/ANAME records (supported by most modern DNS providers) or point to an IP address via an A record instead.
What is the difference between SPF, DKIM, and DMARC?
SPF authorizes which servers can send email from your domain. DKIM adds a cryptographic signature to emails so recipients can verify they were not tampered with. DMARC ties SPF and DKIM together with a policy (none / quarantine / reject) and provides reporting. You need all three for robust email authentication.
How do I check DNS records from the command line?
Use dig example.com A (Linux/macOS) or nslookup -type=A example.com (Windows). Specify the record type after the domain. For TXT records: dig example.com TXT.