Plain-English guides to DNS records, security protocols, and troubleshooting workflows.
Explore our comprehensive documentation on common DNS record types, typical misconfigurations, and how to validate each record online. Use the linked tools within the guides to verify live DNS answers and compare resolver results.
IPv4 address mapping, apex vs www, and common pointing mistakes.
IPv6 addressing, dual stack setup, and connectivity pitfalls.
Aliases, SaaS integrations, and the apex domain rule.
Delegation, authoritative name servers, and registrar alignment.
Zone metadata, primary nameservers, serials, and refresh timers.
Mail routing priorities, MX target requirements, and delivery checks.
Verification strings, character limits, and machine-readable data.
Sender policy, 10 DNS lookup limits, and soft vs. hard fails.
Policy enforcement, SPF/DKIM alignment, and XML reporting.
Reverse DNS (rDNS), in-addr.arpa, and IP ownership constraints.
VoIP, SIP routing, ENUM, and regular expression (regex) rules.
Service discovery, priority vs. weight, port formatting, and strict target rules.
Cryptographic signatures, the Chain of Trust, and SERVFAIL errors.
Restricting Certificate Authorities, Let's Encrypt, and issue tags.
DANE protocol, certificate pinning, and securing SMTP connections.
How DNS caching works, TTL (Time to Live), and why updates take 48 hours.
How MX, SPF, DKIM, and DMARC work together to guarantee inbox delivery.
The ultimate zero-trust setup using CAA, TLSA, and DNSSEC combined.