Here is a clean, simple explanation of all the main DNS record types, including those used for websites, email, verification, and advanced services.
🌐 DNS Record Types Explained (Easy Guide)
DNS (Domain Name System) is like the phonebook of the internet.
It translates names (like example.com) into the technical information needed to make things work.
Below are the most important DNS record types and what they do.
✅ 1. A Record (Address Record)
Maps a domain → IPv4 address
Example:
example.com → 192.168.10.5
Used for:
- Websites
- Servers
- Firewalls
- Any service that has an IPv4 IP
✅ 2. AAAA Record (IPv6 Address Record)
Same as an A record but for IPv6.
Example:
example.com → 2400:cb00:2048:1::c629:d7a2
Used when IPv6 is enabled.
✅ 3. CNAME Record (Canonical Name)
Alias of another domain.
Example:
www.example.com → example.com
Uses:
- Makes multiple names point to the same system
- Cloud services (Microsoft 365, SaaS, CDNs, etc)
Important:
A CNAME cannot exist on the root domain (example.com), only on subdomains.
✅ 4. MX Record (Mail Exchange)
Tells where email for the domain must be delivered.
Example:
example.com → mail.protection.outlook.com (priority 0)
Uses:
- Office 365
- Google Workspace
- Mail servers
MX records also use priority:
- Lower number = higher priority
- Example: 0 → primary, 10 → backup
✅ 5. TXT Record (Text Record)
Flexible record used for verification, security, and policies.
Examples:
- Domain verification
- SPF (email anti-spoofing)
- DKIM (email signing)
- DMARC (email security policy)
Example:
v=spf1 include:_spf.google.com ~all
TXT is one of the most commonly used DNS records today.
✅ 6. SRV Record (Service Record)
Defines services + ports for servers.
Example: Microsoft 365 Autodiscover / Skype / SIP
_service._proto.name. TTL class SRV priority weight port target
Used for:
- VoIP / SIP
- Skype / Teams
- LDAP
- Minecraft servers
✅ 7. NS Record (Nameserver Record)
Indicates which DNS servers host the DNS zone.
Example:
example.com → ns1.cloudflare.com
Uses:
- When pointing a domain to Cloudflare, Afrihost, Microsoft, etc.
✅ 8. SOA Record (Start of Authority)
Contains administrative details for the DNS zone.
Includes:
- Contact email
- Serial number
- Refresh times
This record is usually created automatically by your DNS provider.
✅ 9. PTR Record (Reverse DNS / rDNS)
Maps IP → domain name (the opposite of an A record).
Used for:
- Email servers (required for spam reputation)
- Some security tools
Example:
192.168.10.5 → mail.example.com
Only the ISP or hosting provider can create PTR records.
✅ 10. CAA Record (Certificate Authority Authorization)
Controls which certificate authorities may issue SSL certificates for your domain.
Example:
example.com → issue "letsencrypt.org"
Helps prevent fraudulent SSL certificates.
🧩 Minor / Special Records
11. ALIAS / ANAME Record
- Like a CNAME for the root domain.
- Used by Cloudflare, DNS Made Easy, etc.
12. SPF Record (Deprecated, replaced by TXT)
Old method for email authorization. Now implemented as a TXT record.
13. DKIM Record
Public key used to verify email signatures. Also a TXT record.
14. DMARC Record
Email policy telling receivers how to handle spoofed mail. Also a TXT record.
🔍 Summary Table
| Record | Purpose |
|---|---|
| A / AAAA | Domain → IP |
| CNAME | Alias → another domain |
| MX | Email routing |
| TXT | Verification, SPF, DKIM, DMARC |
| SRV | Service definitions (port, priority) |
| NS | Nameservers |
| SOA | Zone meta info |
| PTR | Reverse DNS (IP → domain) |
| CAA | Allowed SSL certificate authorities |
| ALIAS | CNAME-like for root domains |