DNS Record Types and Troubleshooting Cues

Key Takeaways

DNS maps names to data such as IP addresses, mail exchangers, service locations, aliases, and text records.
A and AAAA records map hostnames to IPv4 and IPv6 addresses respectively.
CNAME creates an alias, MX identifies mail exchangers, TXT stores text values, and SRV identifies service location.
TTL affects how long resolvers cache DNS answers before checking again.
DNS troubleshooting should distinguish name resolution failure from routing, firewall, or application failure.

Last updated: April 2026

DNS is a dependency for many network services. A server can be healthy and reachable by IP address while users still report an outage because the name resolves incorrectly.

Common DNS Records

Record	Purpose	Example clue
A	Maps a name to an IPv4 address	app.example.com -> 192.0.2.10
AAAA	Maps a name to an IPv6 address	app.example.com -> 2001:db8::10
CNAME	Creates an alias to another name	www points to web-prod.example.com
MX	Identifies mail servers for a domain	Mail delivery problem
TXT	Stores text values	SPF, DKIM, DMARC, ownership verification
NS	Identifies authoritative name servers	Delegation or zone authority issue
SOA	Identifies zone authority and timers	Zone serial and replication clue
PTR	Maps IP address back to a name	Reverse lookup and mail reputation checks
SRV	Identifies service host and port	Directory, voice, or service discovery

Network+ questions often give a symptom and ask which record is missing or wrong. If web users cannot resolve a hostname to an IPv4 address, think A record. If email for a domain fails, check MX and related TXT records.

DNS Resolution Roles

Role	Function
Stub resolver	Client-side resolver library or OS component
Recursive resolver	Performs lookups on behalf of clients and caches answers
Authoritative server	Holds final answers for a DNS zone
Forwarder	DNS server that sends queries to another resolver
Root and TLD servers	Help locate authoritative servers through delegation

Internal networks often use split DNS, where internal clients receive private answers and external clients receive public answers for the same or related names.

TTL and Caching

TTL is the time-to-live value that tells resolvers how long to cache an answer. A long TTL reduces query load but makes changes slower to take effect. A short TTL can help during migrations but increases query traffic.

Migration pattern:

Lower the TTL before the planned change.
Wait for old cached records to expire.
Change the record to the new target.
Validate from multiple resolver paths.
Raise the TTL after the service is stable.

If some users reach the old server and others reach the new server, cached DNS answers or inconsistent authoritative records may be involved.

Troubleshooting Cues

Symptom	Likely area to check
Host works by IP but not by name	A, AAAA, CNAME, search suffix, resolver settings
Email does not route to the new provider	MX records and TTL
Reverse lookup fails	PTR record and reverse zone delegation
Some sites resolve internally but not externally	Split DNS or public zone records
Wrong answer only from one office	Local recursive resolver cache or conditional forwarder
Browser resolves but app still fails	Firewall, port, TLS, or application issue after DNS succeeds

Useful commands include nslookup and dig for querying records, ipconfig or resolvectl for client resolver state depending on platform, and ping only as a limited name resolution clue. Ping failure alone does not prove DNS failure because ICMP may be blocked.

PBQ-Style DNS Scenario

Facts:

Users can connect to 10.20.30.40 directly.
The name portal.example.com resolves to 10.20.30.25.
A recent migration moved the portal to 10.20.30.40.
Some users still reach the old service.

Best actions:

Query the authoritative DNS server for portal.example.com.
Verify the A or CNAME chain points to the new target.
Check TTL and resolver caches.
Flush or wait out caches where appropriate.
Confirm firewall and application access to the new IP after DNS resolves correctly.

The decision point is whether DNS returns the correct answer. Once the name resolves to the correct address, move to transport and application troubleshooting.

Test Your Knowledge

Users can reach a web server by IPv4 address but not by hostname. Which DNS record should be checked first?

TXT

PTR only

Test Your KnowledgeMulti-Select

Which DNS records are commonly involved in email delivery and validation? Choose two.

Select all that apply

TXT

AAAA only

SRV only

Test Your KnowledgeOrdering

Order the steps for a planned DNS cutover.

Arrange the items in the correct order

Lower the TTL before the change window

Wait for prior cached answers to expire

Update the record to the new target

Validate resolution and then raise TTL when stable

Up Next

DHCP, DHCPv6, SLAAC, Scopes, Leases, and Relay

Continue learning

CompTIA Network+

1Introduction & Exam Overview

2Domain 1: Networking Concepts (23%)

3Domain 1: Media, Connectors, Transceivers, and Network Architectures

4Domain 1: IP Addressing and Subnetting Mastery

5Domain 2: Network Implementation - Routing

6Domain 2: Network Implementation - Switching

7Domain 2: Network Implementation - Wireless and Physical Implementation

8Domain 2: Network Implementation - Services Implementation

9Domain 3 Part A: Network Operations Documentation and Governance

10Domain 3 Part B: Monitoring, Remote Access, and Resilience

11Domain 4: Logical Security and Secure Access (14%)

12Domain 4: Segmentation, Risk, and Network Attacks (14%)

13Domain 4: Security Controls and Hardening (14%)

14Domain 5: Troubleshooting Methodology and Tools (24%)

15Domain 5: Physical, Interface, and Wireless Troubleshooting (24%)

16Domain 5: Network Services, Switching, Routing, and Performance Troubleshooting (24%)

17Performance-Based Question Labs

18High-Yield Reference and Final Study Plan

19Final Synthesis: Strategy, Remediation, and Readiness