Glossary · 3 min read

What Is a Reverse Lookup?

Understand reverse lookups including reverse DNS (PTR records), reverse IP lookups, and reverse email lookups. Learn how each works, common use cases, and limitations.

What Is a Reverse Lookup?

A reverse lookup is any search that works backwards from a known identifier (IP address, email address, phone number) to find associated information. In the context of internet infrastructure, the most important type is reverse DNS, which maps an IP address back to a hostname. Other forms of reverse lookup serve different investigative and verification purposes.

Reverse DNS (PTR Records)

Reverse DNS is the process of resolving an IP address to a hostname, the opposite of a standard forward DNS lookup (hostname to IP). It relies on PTR (Pointer) records stored in a special DNS zone.

How It Works

For IPv4, reverse DNS uses the in-addr.arpa zone. The IP address is written in reverse order:

  • IP: 192.0.2.1
  • Reverse DNS query: 1.2.0.192.in-addr.arpa
  • PTR record: mail.example.com.

For IPv6, reverse DNS uses the ip6.arpa zone, with each hexadecimal nibble reversed and separated by dots.

PTR records are managed by whoever controls the IP address block, typically the ISP or hosting provider. You usually need to request PTR record creation through your provider's control panel or support.

Why Reverse DNS Matters for Email

Reverse DNS is critical for email deliverability. When a mail server receives an SMTP connection, it often performs a reverse DNS lookup on the connecting IP:

  • Gmail checks that the sending IP has a valid PTR record and that the PTR hostname resolves back to the same IP (forward-confirmed reverse DNS, or FCrDNS).
  • Outlook factors PTR record presence and consistency into its sender reputation evaluation.
  • Yahoo similarly expects sending IPs to have matching PTR records.

A missing or mismatched PTR record can cause email rejection or spam folder placement. Check your sending IP's reverse DNS with our IP reputation tool.

Reverse IP Lookup

A reverse IP lookup identifies all domains hosted on a given IP address. This is useful for:

  • Shared hosting analysis. Determining what other websites share your server's IP. If a neighbor is sending spam, it can affect your IP reputation.
  • Security investigations. Identifying all services associated with a suspicious IP.
  • Infrastructure mapping. Understanding how a target's hosting is organized.

Reverse IP lookups rely on databases that map IP addresses to domains based on DNS records, web crawling, and certificate transparency logs. Results are not always complete, especially for servers using name-based virtual hosting.

Reverse Email Lookup

A reverse email lookup searches for information associated with an email address, such as the owner's name, social media profiles, or other accounts. These lookups aggregate data from public records, data breaches, social media APIs, and WHOIS records.

Limitations: Results vary widely in accuracy. Privacy regulations (GDPR, CCPA) and platform changes have reduced the data available to these services.

Use Cases

  • Email server administration. Verifying FCrDNS for your sending IPs to meet deliverability requirements.
  • Spam investigation. Looking up the PTR and IP reputation of servers sending suspicious email. Analyze headers with our header analysis tool and check IPs with our IP reputation tool.
  • Network troubleshooting. Identifying which server an IP belongs to when reviewing logs or firewall rules.
  • Domain reconnaissance. Mapping infrastructure by finding all domains on a given IP or all IPs associated with a domain via our DNS lookup tool.

Stay on top of your email infrastructure. Sign up for the InboxTooling newsletter for deliverability tips, tool updates, and best practices.

More glossary terms

DNS Ports Explained

Understand which network ports DNS uses, including port 53 for standard queries, port 443 for DNS over HTTPS, and port 853 for DNS over TLS.

DNS Record Types: A Complete Reference Guide

A technical reference for all major DNS record types including A, AAAA, MX, CNAME, TXT, NS, SOA, PTR, SRV, and CAA. Includes example values and use cases.

How Do IP Addresses Work?

Understand how IP addresses work, including IPv4 vs IPv6 formats, public vs private addresses, static vs dynamic assignment, NAT, and CIDR notation.

SMTP Ports Explained: 25, 465, 587, and 2525

Understand the four SMTP ports, when to use each one, the difference between STARTTLS and implicit TLS, and why ISPs block port 25.

What Is DKIM (DomainKeys Identified Mail)?

Learn how DKIM uses cryptographic signatures to authenticate email, including selector records, public/private key pairs, and the verification process per RFC 6376.

What Is DMARC?

Understand DMARC, how it builds on SPF and DKIM with alignment checks, policy options (none, quarantine, reject), and aggregate vs forensic reporting per RFC 7489.

What Is DNS (Domain Name System)?

Learn how the Domain Name System works, including recursive and iterative queries, root servers, caching, and TTL values. A technical overview referencing RFC 1035.

What Is Secure DNS (DoH and DoT)?

Learn about secure DNS protocols including DNS over HTTPS, DNS over TLS, and DNSSEC. Understand why standard DNS is insecure and how to protect your queries.

What Is a Domain Name?

Learn what a domain name is, how domains map to IP addresses via DNS, the difference between TLD types, and how subdomains, URLs, and hostnames relate.

What Is a Gateway IP Address?

Learn what a gateway IP address is, how default gateways route traffic between networks, and how to find your gateway address on any operating system.

What Is a Reverse Proxy?

Learn how reverse proxies work, the difference between forward and reverse proxies, and common use cases including load balancing, SSL termination, and caching.

What Is an Email Bounce?

Understand email bounces, the difference between hard and soft bounces, common SMTP error codes, and how bounces affect sender reputation.

What Is an Email Domain Name?

Learn what an email domain is, how the @domain.com part of email addresses works with MX records to route messages, and the difference between free and custom email domains.

What Is an SMTP Server?

Learn how SMTP servers work, the difference between MTA, MSA, and MDA, and how email is delivered hop by hop using the SMTP protocol defined in RFC 5321.

What Is an SPF Record?

Understand SPF records, how they authorize email senders, the TXT record format, and how receivers evaluate SPF results including pass, fail, and softfail.

What Is an SSL Certificate?

Learn how SSL/TLS certificates encrypt internet traffic, how the chain of trust works, the difference between DV, OV, and EV certificates, and why TLS replaced SSL.