Skip to main content
HashnodeUnderstanding Network Devices

Command Palette

Search for a command to run...

How DNS Resolution Works

Published
3 min read
How DNS Resolution Works
F
Faisal faiz

Think of DNS (Domain Name System) as the phonebook of the internet. While we prefer human-friendly names like google.com, computers communicate using IP addresses like 142.250.190.46.

Name resolution exists because humans aren't great at memorizing strings of numbers, and IP addresses can change even if the website name stays the same. DNS provides the mapping that keeps the internet navigable.

The dig Command: Your DNS X-Ray

The dig (Domain Information Groper) command is a flexible tool used to query DNS name servers. It’s the industry standard for troubleshooting because it shows you exactly what the DNS servers are saying, without the "filtering" or caching your browser might do.

The DNS Hierarchy: A Layered Journey

DNS isn't one giant database; it’s a distributed hierarchy. To find google.com, your request travels through several layers. Let’s trace that journey using dig.

1. The Root: dig. NS

The "dot" (.) represents the DNS Root Zone. This is the absolute top of the hierarchy.

  • The Command: dig. NS

  • What it does: Asks for the Name Server (NS) records of the root.

  • The Result: You’ll see a list of the 13 logical root server clusters (named a.root-server.net through m.root-server.net).

  • Why it matters: These servers don't know where goole.com is, but they know exactly who is in charge of .com.

2. The TLD: dig com NS

Once we have the root, we move to the Top-Level Domain (TLD).

  • The Command: dig com NS

  • What it does: Queries the root servers for the name servers responsible for the .com registry.

  • The Result: You'll see servers managed by entities like Verisign.

  • System Design Note: TLD servers are categorized by type (gTLDs like .com .org) or country (ccTLDs like .uk .jp).

3. The Authoritative: dig google.com NS

Now we reach the "source of truth" for the specific domain.

  • The Command: dig google.com NS

  • What it does: Asks the TLD servers who specifically handles the records for Google.

  • The Result: You’ll see Google’s own name servers (e.g., ns1.google.com).

  • Why it matters: Authoritative Name Servers are the final stop. They hold the actual IP address mapping in their zone files.

The Full Resolution Flow: dig google.com

When you run a standard dig google.com, you are looking for the A Record (the IPv4 address).

In a real-world browser request, a Recursive Resolver (usually provided by your ISP or Google 8.8.8.8) does all the heavy lifting for you:

  1. Check Cache: If the resolver already knows the IP, it returns it instantly.

  2. Ask Root: "Where is .com?"

  3. Ask TLD: "Where is google.com?"

  4. Ask Authoritative: "What is the IP for google.com?"

  5. Return & Cache: The resolver gives the IP to your browser and saves it for a period called the TTL (Time to Live).

Reading the Output

When you run dig google.com, look at the ANSWER SECTION:

Plaintext

;; ANSWER SECTION:

google.com. 216 IN A 142.250.190.46

  • 216: The TTL (seconds remaining before the resolver asks again).

  • A: The record type (Address).

  • 142.250.190.46: The destination IP.

#chaicode#dns#web-development

Comments

Join the discussion

No comments yet. Be the first to comment.

More from this blog

U

Understanding Network Devices

10 posts