Introduction to DNS

What is DNS (Domain Name System)?

DNS, or Domain Name System, is a system used to translate human-readable domain names (e.g., www.designgurus.com) into IP addresses (e.g., 198.47.25.1) that computers can understand. This translation process is crucial because computers and networking devices rely on IP addresses to identify and communicate with each other on the internet. In simple terms, DNS acts like a phonebook for the internet, allowing users to access websites using easy-to-remember domain names instead of having to memorize numeric IP addresses.

Purpose and Importance of DNS

The primary purpose of DNS is to make it easier for people to access websites and other online resources. By providing a human-readable naming system for computers and other devices connected to the internet, DNS enables users to navigate the internet using familiar and intuitive domain names.

DNS is essential for the smooth functioning of the internet. Some of its key benefits include:

User-friendliness: Domain names are easier to remember and type than IP addresses, which are long strings of numbers.
Scalability: DNS is a distributed and hierarchical system, allowing it to handle the ever-growing number of domain names and IP addresses on the internet.
Flexibility: DNS allows websites to change their IP addresses without affecting users. When a website's IP address changes, the DNS records are updated, and users can continue accessing the site using the same domain name.
Load balancing: DNS can distribute user requests across multiple servers, improving the performance and reliability of websites.

DNS Components and Terminology

1. Domain names, TLDs (Top-Level Domains), and subdomains

Domain names: A domain name is a human-readable address used to access a website or other resources on the internet. It consists of a series of character strings separated by dots, such as www.example.com. Domain names are easier to remember and use than IP addresses.
TLDs (Top-Level Domains): A top-level domain (TLD) is the rightmost part of a domain name, such as ".com" in www.example.com. TLDs are managed by various organizations and can be divided into two categories: generic TLDs (gTLDs), like .com, .org, or .net, and country-code TLDs (ccTLDs), which represent specific countries or territories, like .us for the United States or .uk for the United Kingdom.
Subdomains: A subdomain is a subdivision of a domain name, allowing the creation of separate sections or areas within a website. Subdomains appear to the left of the main domain name, such as blog.example.com, where "blog" is the subdomain of example.com.

2. DNS servers: Root, TLD, and Authoritative Name Servers

Root servers: Root servers are the highest level of DNS servers and are responsible for directing queries to the appropriate TLD servers. There are 13 root server clusters worldwide, managed by various organizations, each having multiple servers for redundancy and reliability.
TLD servers: TLD servers store information about domain names within their specific TLD. When they receive a query, they direct it to the appropriate authoritative name server responsible for that domain.
Authoritative name servers: These servers hold the actual DNS records for a domain, including its IP address and other information. They provide the final answer to DNS queries, allowing users to access the desired website or resource.

3. DNS resolvers

A DNS resolver is any component (software or hardware) responsible for translating a human-friendly domain name (like example.com) into the IP address that the computer needs to connect to (such as 93.184.216.34).

When you type a website address into your browser or click a link, your system relies on DNS resolvers to figure out the correct IP address. There are several types of DNS resolvers, each serving different roles in the DNS lookup process.

The DNS Lookup Process in Brief

Before diving into the types of DNS resolvers, it helps to have a high-level overview of the DNS lookup process:

You request a domain name (e.g., example.com) from your computer or device.
Your computer’s resolver (or stub resolver) sends the request to a DNS recursive resolver (often your ISP’s or a public DNS like Google’s 8.8.8.8).
The recursive resolver checks if it already has the domain name’s IP address in its cache. If so, it returns it immediately.
If not, the recursive resolver queries the root DNS servers, then the TLD (Top-Level Domain) DNS servers, then the authoritative DNS server for the domain, following DNS hierarchy.
Once the IP address is found, the resolver returns it to your computer. Your computer can then contact the web server at that IP.

1. Stub Resolver

A stub resolver is the minimal DNS client software running on your device (laptop, smartphone, IoT gadget, etc.) that starts the DNS lookup process. It typically does not perform the full DNS query process by itself.

How It Works

The stub resolver knows one or more DNS servers to send queries to. These DNS servers are often configured automatically (for example, via DHCP on your home router) or manually by users (e.g., configuring 8.8.8.8 for Google DNS).
When your device needs to resolve a domain name, the stub resolver sends a request to the configured DNS server and waits for the response.
The stub resolver takes the response (the IP address or an error) and hands it back to the application (like a web browser).

Example

On Windows or macOS, you can see your DNS server addresses in your network settings. These addresses often point to your router (which might act as a basic DNS forwarder) or directly to an ISP-provided DNS server.
If you have manually configured 8.8.8.8 (Google Public DNS) or 1.1.1.1 (Cloudflare DNS), your computer’s stub resolver sends all DNS queries to Google or Cloudflare, respectively.

2. Recursive Resolver

A recursive resolver is a DNS server that actively performs the DNS query process on behalf of the client. It hunts down the IP address by querying multiple DNS servers until it gets the final answer.

How It Works

The recursive resolver receives a request from a stub resolver (or another forwarder).
It first checks its local cache to see if the requested domain’s IP address is stored there.
- If found, it returns the cached answer immediately.
If the record is not cached, the resolver queries the root DNS servers to learn which TLD server (e.g., .com, .org) to query next.
It then queries the relevant TLD server to find the authoritative DNS server for the specific domain.
Finally, it queries the authoritative server to obtain the required DNS records (e.g., the A record for IPv4).
The resolved IP is cached for future requests and returned to the stub resolver.

Example

ISP DNS Resolver: Most internet service providers run their own recursive DNS resolvers that their customers use by default.
Public DNS Resolver: Google Public DNS (8.8.8.8), Cloudflare DNS (1.1.1.1), and OpenDNS (208.67.222.222) are common public recursive resolvers.

3. Caching-Only Resolver

A caching-only resolver is a type of DNS server whose primary function is to cache DNS query results and reuse them to speed up subsequent lookups. It does not host any DNS zones (i.e., it is not authoritative for any domain) and typically performs recursive lookups on behalf of clients.

How It Works

Like a recursive resolver, a caching-only resolver forwards queries to other DNS servers if the record is not already in its cache.
Once it obtains the result, it stores (caches) the DNS records for the duration specified by their TTL (Time to Live).
Subsequent queries for the same domain within the TTL period are served faster from the cache, reducing the need for external lookups.

Example

Many home routers or DNS forwarders act as caching-only resolvers. Once a family member’s device visits example.com, the router caches the IP for that domain. If another device requests example.com soon after, it is resolved almost instantly from the router’s cache.

4. Forwarder

A forwarder is a DNS server that forwards all queries (or queries that it cannot resolve locally) to another DNS server instead of performing the complete recursive resolution process itself.

How It Works

A DNS server is configured to send queries to an upstream DNS server, often a well-known public DNS or an ISP DNS.
The forwarder may still maintain a local cache to speed up DNS resolution for repeated queries.
This setup is common in corporate networks to manage and log DNS queries centrally or apply custom policies (e.g., content filtering).

Example

A small business might have a local DNS server that forwards any external domain queries to their ISP’s DNS servers or Google DNS. This helps centralize DNS settings and possibly implement local domain resolutions (like intranet.local) without handling the complexity of a full recursive resolver setup.

5. Iterative (Non-Recursive) Resolver

Sometimes called a non-recursive resolver, an iterative resolver typically gives back partial results or referrals, instructing the client to continue the resolution process on its own.

How It Works

If a client asks this resolver for a record, the resolver either:
- Returns the answer if it is authoritative or has it cached, or
- Returns a referral with the address of another DNS server (for instance, the root or TLD server), prompting the client to “try there next.”

This type is less common for end-user devices; it is often used by authoritative DNS servers to direct queries up or down the DNS hierarchy.

Example

An authoritative DNS server for example.com typically returns referrals for subdomains it does not know. If you ask it about sub.example.com but that subdomain is handled by a different name server, it might respond with the details of that other name server rather than performing the recursion on your behalf.

Visualizing the DNS Resolution Chain

Below is a simplified chart showing the typical path of a DNS query:

User's Device (Stub Resolver)
     |
     v
Recursive Resolver (Often ISP/ Public)
     |
     v
  Root Server
     |
     v
 TLD Server (.com, .net, etc.)
     |
     v
 Authoritative Server (example.com)
     |
     v
   IP Address

Stub resolver: Passes the domain name request to the recursive resolver.
Recursive resolver: Takes on the hard work of querying each layer (root, TLD, authoritative) if it doesn’t have the answer cached.
Caching: Each resolver may cache responses to speed up future queries.

Putting It All Together

Stub Resolver on your device:
- Minimal functionality—just sends the query to a DNS server.
Recursive Resolver (may also be a Caching-Only Resolver):
- Receives queries from stub resolvers.
- Looks up (recursively) the chain of DNS servers if not cached.
- Caches the response for future requests.
Forwarder:
- A DNS server configured to pass queries on to another resolver rather than doing the full lookup.
- Can also cache responses.
Iterative (Non-Recursive) Resolver:
- Responds with direct answers if known or references to other DNS servers (referrals), but doesn’t do recursion.

Real-World Example Scenario

Your Laptop (Stub Resolver) is set to use 8.8.8.8 (Google DNS).
You type www.example.com into your browser.
The stub resolver on your laptop sends the DNS query to 8.8.8.8 (a Public Recursive Resolver).
Google DNS checks its cache:
- If www.example.com is cached, it returns the IP right away.
- If not, it queries the root server, then .com TLD server, then the example.com authoritative server in turn.
Once found, the IP address is cached in Google’s DNS servers and returned to your laptop’s stub resolver.
Your laptop connects to the returned IP address, and the website loads.

🤖 Don't fully get this? Learn it with Claude

Stuck on Introduction to DNS? Open Claude, copy a block below, and it'll teach you this exact concept — visually and interactively.

🎨 Explain it visually

Build the mental picture, not memorization.

I just read a lesson on **Introduction to DNS** (System Design) and want to truly understand it. Explain Introduction to DNS from first principles using ONE vivid real-world analogy and a visual mental model — draw it as ASCII art or a clear step-by-step diagram — with a concrete example using real numbers. Then ask me one question to check I got the mental picture, and wait for my reply. If you're unsure or a claim isn't standard, say so and reason from first principles instead of guessing.

🤔 Walk me through it (interactive)

Socratic — adapts to where you're stuck.

Teach me **Introduction to DNS** interactively. Ask me ONE guiding question at a time, wait for my answer, and adapt to my confusion — build the idea with me step by step instead of explaining it all at once. If you're unsure or a claim isn't standard, say so and reason from first principles instead of guessing.

🧪 Quiz me & fix my gaps

Active recall exposes what you missed.

Quiz me on **Introduction to DNS** with 5 questions, easy to tricky, ONE at a time. Tell me if each answer is right; at the end, explain clearly what I got wrong and why. If you're unsure or a claim isn't standard, say so and reason from first principles instead of guessing.

🧠 Make it stick

Intuition + hook + flashcards for long-term memory.

Help me remember **Introduction to DNS** for the long term: give the one-sentence intuition, a memorable hook/mnemonic, a tiny worked example, and 3 active-recall flashcards (Q -> A). If you're unsure or a claim isn't standard, say so and reason from first principles instead of guessing.

📝 My notes

DNS Load Balancing and High Availa →