liminfo

DNS Lookup

Free web tool: DNS Lookup

Info

  • Uses Cloudflare DNS over HTTPS (DoH) API to query DNS records.
  • Supports A, AAAA, CNAME, MX, NS, TXT, SOA, SRV, CAA, PTR records.
  • All queries are sent directly from your browser to Cloudflare.
  • Batch mode lets you query multiple domains at once.
  • Export results as JSON or CSV files.

Related Tools

WHOIS Lookup

Look up domain ownership, registration, and expiry details.

SSL Certificate Check

Check SSL/TLS certificate status and validity for a domain.

IP Address Lookup

Find geolocation, ISP, and ASN information for an IP address.

Subnet Calculator

Calculate subnet masks, IP ranges, and CIDR notation.

About DNS Lookup

The DNS Lookup tool lets you query any domain's DNS records directly from your browser using the Cloudflare DNS over HTTPS (DoH) API at cloudflare-dns.com. It supports all ten major record types — A, AAAA, CNAME, MX, NS, TXT, SOA, SRV, CAA, and PTR — and displays the response with the record name, type, TTL, and data value in a clean table.

The batch lookup mode lets you paste multiple domains (one per line) and query all selected record types at once. Results are grouped by domain in separate cards, making it easy to compare DNS configurations across domains. You can toggle record type filters (A, AAAA, MX, NS, TXT, CNAME, SOA, and more) to focus only on the records you need.

All DNS queries are sent directly from your browser to the Cloudflare DoH endpoint over HTTPS — they are not relayed through any intermediate server. Results can be exported as JSON or CSV files for documentation, auditing, or further analysis. The tool also provides cross-links to related network tools like WHOIS, SSL Check, and IP Lookup.

Key Features

  • Queries A, AAAA, CNAME, MX, NS, TXT, SOA, SRV, CAA, and PTR record types
  • Batch lookup mode — query multiple domains at once with selectable record type filters
  • Powered by Cloudflare DNS over HTTPS (DoH) — private and encrypted queries
  • Export results as JSON or CSV files for documentation and auditing
  • Record type filter buttons — toggle A, AAAA, MX, NS, TXT, CNAME, SOA individually
  • Displays response status (NOERROR, NXDOMAIN, SERVFAIL) with human-readable labels
  • Shows DNSSEC validation status (AD flag) for each response
  • Results grouped by domain in batch mode with per-domain cards
  • Session query history with one-click replay of the last 10 lookups
  • Cross-links to related tools: WHOIS, SSL Check, IP Lookup, Subnet Calculator
  • Dark mode support and responsive layout for desktop and mobile use

Frequently Asked Questions

What DNS record types does this tool support?

The tool supports all ten major record types: A (IPv4 address), AAAA (IPv6 address), CNAME (canonical name alias), MX (mail exchanger), NS (authoritative nameserver), TXT (arbitrary text, used for SPF, DKIM, DMARC), SOA (start of authority), SRV (service locator), CAA (certificate authority authorization), and PTR (reverse DNS).

How does batch lookup mode work?

In batch mode, paste multiple domain names (one per line) into the text area, select which record types to query using the filter buttons, and click Start Batch Lookup. The tool queries all selected record types for each domain concurrently (in batches of 5 to avoid rate limiting) and displays results grouped by domain. Lines starting with # are treated as comments and ignored.

Which DNS resolver does this tool use?

The tool uses Cloudflare's public DNS over HTTPS (DoH) resolver at cloudflare-dns.com/dns-query. This resolver is privacy-focused, does not log personally identifiable information, and supports DNSSEC validation. The query is sent directly from your browser to Cloudflare — it does not pass through this site's servers.

How do I export DNS results?

After performing a lookup (single or batch), click the "Export JSON" or "Export CSV" button that appears below the results. JSON export produces a formatted array of records with domain, type, name, TTL, value, and status fields. CSV export produces a comma-separated file with the same columns, suitable for spreadsheets.

What does NXDOMAIN mean?

NXDOMAIN (Non-Existent Domain) is the DNS response code returned when the queried domain does not exist in the DNS system. This usually means the domain has not been registered, has expired, or there is a typo in the domain name.

What is TTL in DNS records?

TTL (Time to Live) is the number of seconds that a DNS resolver should cache the record before re-querying the authoritative nameserver. A TTL of 300 means the record can be cached for 5 minutes. Lower TTL values mean DNS changes propagate faster, but cause more query load on nameservers.

What does DNSSEC Validated mean?

When the AD (Authenticated Data) flag is set in the DNS response, it means the Cloudflare resolver has verified the response using DNSSEC (DNS Security Extensions). DNSSEC uses cryptographic signatures to ensure DNS records have not been tampered with in transit.

Can I use this to check email configuration?

Yes. To debug email delivery, query the MX record to see the mail servers, then query the TXT record to check SPF (Sender Policy Framework), DKIM, and DMARC configuration. These are the most common DNS-based email authentication mechanisms.

How does DNS over HTTPS (DoH) differ from traditional DNS?

Traditional DNS queries are sent in plain text over UDP port 53, making them visible to network observers. DNS over HTTPS sends queries encrypted over HTTPS port 443, preventing eavesdropping and interception. Cloudflare's DoH resolver also supports DNSSEC validation.