DNS Lookup

Resolve A / AAAA / MX / TXT / CNAME / NS / CAA records for any domain, either directly from your browser via Cloudflare DoH, or from 5+ globalping probes worldwide to compare answers across resolvers.

Lookup Networking Updated Apr 20, 2026
X Facebook LinkedIn Reddit Email
How to Use
  1. Enter a domain name (example.com, github.com — no protocol or path).
  2. Pick a record type from the dropdown: A (IPv4), AAAA (IPv6), MX (mail), TXT (arbitrary), CNAME (alias), NS (nameserver), CAA (cert authority), or ANY.
  3. Direct mode (default) queries Cloudflare 1.1.1.1 over DNS-over-HTTPS from your browser — single request, instant result.
  4. Multi-probe mode runs the same query from globalping probes worldwide — compare answers across regions to verify GeoDNS or detect hijacking.
  5. TTL values are shown for each record so you know how long resolvers will cache the answer.
  6. Use the Copy button to grab the raw answer for documentation or troubleshooting tickets.
Query
Direct = Cloudflare 1.1.1.1 DoH from your browser. Multi-probe = globalping probes worldwide.
Try:
Records

Enter a domain above — records land here from Cloudflare DoH or globalping probes.

Supported records

A / AAAA
IPv4 / IPv6 addresses
MX
Mail exchangers + priority
TXT
SPF, DKIM, DMARC, domain verification
CNAME
Canonical name alias
NS
Name-servers authoritative for the zone
CAA
Which CAs can issue certs

Frequently Asked Questions

What is DNS-over-HTTPS (DoH)?

DoH wraps DNS queries in standard HTTPS requests, so they look like normal web traffic to anyone watching. Cloudflare 1.1.1.1, Google 8.8.8.8, and Quad9 9.9.9.9 all offer DoH endpoints. The benefit: your ISP can't easily see or modify your DNS lookups (which they often do for ad insertion, parental-control filtering, or surveillance). The trade-off: your DNS provider sees them instead, so pick one you trust.

Why does multi-probe mode show different answers?

Several reasons. (1) GeoDNS — large services (Google, Netflix, Cloudflare) deliberately return different IPs from different regions to route traffic to nearby servers. (2) DNS-based load balancing — round-robin or weighted distribution across multiple addresses. (3) Stale propagation — recently changed records still cached at some resolvers. (4) DNS hijacking — a hostile network or compromised resolver returning fake answers. Multi-probe makes all of these visible at once.

What's the difference between A and AAAA records?

A records map a domain name to an IPv4 address (32-bit, like 93.184.216.34). AAAA records map to an IPv6 address (128-bit, like 2606:2800:220:1:248:1893:25c8:1946). A domain can have one or both; modern services typically run dual-stack with both record types. Browsers prefer IPv6 when available.

What does a TXT record actually do?

Nothing on its own — TXT is a free-form string. Real applications: SPF and DMARC for email authentication, DKIM keys for email signing, domain ownership verification (Google, Microsoft, ACME challenges), and a long tail of vendor-specific configuration. Inspecting TXT records is often the first step when debugging email deliverability or domain-ownership issues.

Why are MX records prioritized?

Mail servers try lower-priority numbers first. A typical setup has a primary at priority 10 and a backup at priority 20; if 10 is down, mail flows to 20. Some setups use round-robin within a single priority for load distribution. The lookup returns priority and hostname for each MX target.

How long does DNS take to propagate?

Up to the record's TTL value. A record with TTL=300 (5 minutes) propagates in 5 minutes from when the change is published. TTL=86400 (24 hours) takes a day. Some legacy DNS resolvers ignore TTLs and cache for fixed periods, so 'full' propagation can take 24–48 hours regardless. Multi-probe is the best way to monitor this in real time.

Common Use Cases

GeoDNS verification

Compare A records from probes in different regions to confirm GeoDNS routing is sending traffic to the closest edge.

Propagation check after changes

After updating a record, poll multiple resolvers to see how far the change has propagated globally.

MX record audit

Verify all mail exchangers and their priorities, especially after migrating to a new email provider.

SPF / DKIM / DMARC debugging

Pull TXT records to verify email-authentication setup is correct before publishing a new mail server.

Detecting DNS hijacking

Compare your home network's DNS answers against multi-probe results to catch ISP-level injection or compromise.

CDN and edge debugging

Confirm CNAME chains and final A records when troubleshooting a CDN or origin-shield configuration.

Last updated: