Glossary · 3 min read

What Is DNS (Domain Name System)?

Learn how the Domain Name System works, including recursive and iterative queries, root servers, caching, and TTL values. A technical overview referencing RFC 1035.

What Is DNS (Domain Name System)?

The Domain Name System (DNS) is a hierarchical, distributed naming system that translates human-readable domain names (like inboxtooling.com) into machine-readable IP addresses (like 93.184.216.34). Defined originally in RFC 1034 and RFC 1035, DNS is often described as the phone book of the internet.

How DNS Resolution Works

When you type a URL into your browser or send an email to [email protected], a multi-step lookup process begins:

Recursive Queries

Your device sends a query to a recursive resolver, typically operated by your ISP or a public DNS service like Cloudflare (1.1.1.1) or Google (8.8.8.8). The recursive resolver is responsible for chasing down the answer on your behalf. It either returns a cached response or performs a series of iterative queries to find the authoritative answer.

Iterative Queries

The recursive resolver queries DNS servers in sequence, each one referring it closer to the answer:

  1. Root servers. The resolver queries one of the 13 root server clusters (named A through M). The root server does not know the IP for example.com, but it knows which servers are authoritative for .com and returns an NS referral.
  2. TLD servers. The resolver queries the .com TLD servers (operated by Verisign). These servers return the NS records for example.com, pointing to the domain's authoritative name servers.
  3. Authoritative servers. The resolver queries the authoritative name server for example.com, which returns the requested record (A, MX, TXT, etc.).

The resolver caches the final answer and returns it to your device.

Caching and TTL

Every DNS record includes a Time to Live (TTL) value, measured in seconds, that tells resolvers how long to cache the response. A TTL of 3600 means the record can be cached for one hour before the resolver must query the authoritative server again.

Short TTLs (60-300 seconds) allow fast propagation of changes but increase query load on authoritative servers. Long TTLs (3600-86400 seconds) reduce query volume but delay propagation when you update records. For email-related records like MX and SPF TXT records, a TTL of 3600 is a common balance.

DNS Server Roles

  • Recursive resolver. Accepts queries from clients and performs the full resolution chain. Caches results.
  • Root name server. The entry point for all DNS resolution. Thirteen logical servers, operated by organizations including Verisign, ICANN, the U.S. Department of Defense, and various universities and nonprofits.
  • TLD name server. Authoritative for a top-level domain (.com, .org, .net, country codes). Returns NS referrals for individual domains.
  • Authoritative name server. Holds the actual DNS zone for a domain and returns definitive answers for records within that zone.

Why DNS Matters for Email

Email delivery depends entirely on DNS. When a mail server wants to deliver a message to [email protected], it queries DNS for the MX records of example.com. Those MX records point to the mail servers that accept email for that domain. Beyond routing, DNS hosts the TXT records that define SPF policies, the CNAME or TXT records for DKIM public keys, and the TXT records for DMARC policies.

A misconfigured DNS record can silently break email delivery, authentication, or both. Use our DNS lookup tool to query any domain's records and verify correct configuration.

Stay on top of your email infrastructure. Sign up for the InboxTooling newsletter for deliverability tips, tool updates, and best practices.

More glossary terms

DNS Ports Explained

Understand which network ports DNS uses, including port 53 for standard queries, port 443 for DNS over HTTPS, and port 853 for DNS over TLS.

DNS Record Types: A Complete Reference Guide

A technical reference for all major DNS record types including A, AAAA, MX, CNAME, TXT, NS, SOA, PTR, SRV, and CAA. Includes example values and use cases.

How Do IP Addresses Work?

Understand how IP addresses work, including IPv4 vs IPv6 formats, public vs private addresses, static vs dynamic assignment, NAT, and CIDR notation.

SMTP Ports Explained: 25, 465, 587, and 2525

Understand the four SMTP ports, when to use each one, the difference between STARTTLS and implicit TLS, and why ISPs block port 25.

What Is DKIM (DomainKeys Identified Mail)?

Learn how DKIM uses cryptographic signatures to authenticate email, including selector records, public/private key pairs, and the verification process per RFC 6376.

What Is DMARC?

Understand DMARC, how it builds on SPF and DKIM with alignment checks, policy options (none, quarantine, reject), and aggregate vs forensic reporting per RFC 7489.

What Is Secure DNS (DoH and DoT)?

Learn about secure DNS protocols including DNS over HTTPS, DNS over TLS, and DNSSEC. Understand why standard DNS is insecure and how to protect your queries.

What Is a Domain Name?

Learn what a domain name is, how domains map to IP addresses via DNS, the difference between TLD types, and how subdomains, URLs, and hostnames relate.

What Is a Gateway IP Address?

Learn what a gateway IP address is, how default gateways route traffic between networks, and how to find your gateway address on any operating system.

What Is a Reverse Lookup?

Understand reverse lookups including reverse DNS (PTR records), reverse IP lookups, and reverse email lookups. Learn how each works, common use cases, and limitations.

What Is a Reverse Proxy?

Learn how reverse proxies work, the difference between forward and reverse proxies, and common use cases including load balancing, SSL termination, and caching.

What Is an Email Bounce?

Understand email bounces, the difference between hard and soft bounces, common SMTP error codes, and how bounces affect sender reputation.

What Is an Email Domain Name?

Learn what an email domain is, how the @domain.com part of email addresses works with MX records to route messages, and the difference between free and custom email domains.

What Is an SMTP Server?

Learn how SMTP servers work, the difference between MTA, MSA, and MDA, and how email is delivered hop by hop using the SMTP protocol defined in RFC 5321.

What Is an SPF Record?

Understand SPF records, how they authorize email senders, the TXT record format, and how receivers evaluate SPF results including pass, fail, and softfail.

What Is an SSL Certificate?

Learn how SSL/TLS certificates encrypt internet traffic, how the chain of trust works, the difference between DV, OV, and EV certificates, and why TLS replaced SSL.