Understanding how DNS works helps you troubleshoot issues, optimise performance, and make informed decisions about DNS configuration. Let's walk through the complete DNS resolution process step by step.
The DNS Resolution Process
When you type a domain name in your browser, DNS performs a series of queries to find the corresponding IP address. Here's what happens:
- Browser Cache Check — Your browser first checks its local DNS cache for previously resolved domains. If found, it uses the cached IP address immediately.
Result: Cache hit = instant resolution | Cache miss = continue - Operating System Cache — If not in browser cache, the OS checks its DNS cache. Both Windows and Unix-like systems maintain DNS caches.
Result: OS cache hit = return to browser | Cache miss = continue - Router/Local Network Cache — Your router or local network DNS cache is checked. Many routers act as DNS forwarders.
Result: Network cache hit = return | Cache miss = continue - Recursive DNS Resolver Query — Your computer queries a recursive DNS resolver (usually provided by your ISP). This server performs the full lookup on your behalf.
Common resolvers: 8.8.8.8 (Google), 1.1.1.1 (Cloudflare), ISP DNS - Root Nameserver Query — The recursive resolver queries one of 13 root nameservers (a.root-servers.net through m.root-servers.net) to find the TLD nameserver.
Root servers: Manage top-level domains (.com, .org, .net, etc.) - TLD Nameserver Query — Root server responds with the TLD nameserver address. Recursive resolver queries the TLD nameserver (e.g., .com nameserver) for the domain's authoritative nameservers.
TLD servers: Manage specific domain extensions - Authoritative Nameserver Query — TLD server responds with authoritative nameservers for the domain. Recursive resolver queries the authoritative nameserver directly for the DNS record.
Authoritative servers: Hold the actual DNS records - IP Address Returned — Authoritative nameserver returns the IP address (for A record) or other DNS record data. Recursive resolver caches the result and returns it to your computer.
Result: Domain resolved to IP address - Website Loads — Your browser receives the IP address, establishes a TCP connection, and loads the website.
Final step: HTTP/HTTPS connection to web server
DNS Hierarchy
- Root Nameservers — 13 root servers worldwide (a.root-servers.net - m.root-servers.net)
- TLD Nameservers — Manage top-level domains (.com, .org, .net, .io, etc.)
- Authoritative Nameservers — Store actual DNS records for domains (A, MX, CNAME, etc.)
DNS Caching
DNS caching significantly improves performance by storing DNS responses at multiple levels:
Cache Levels
- Browser Cache: Stores recent DNS lookups (minutes to hours)
- OS Cache: System-level DNS cache (varies by OS)
- Router Cache: Network device DNS cache
- ISP DNS Cache: Recursive resolver cache (TTL-based)
TTL (Time To Live)
Every DNS record has a TTL value (in seconds) that determines how long it can be cached:
Low TTL (300s): Faster updates, more queries
Medium TTL (3600s): Balanced (default)
High TTL (86400s): Slower updates, fewer queries DNS Query Types
Recursive Query
Client asks DNS server to find the answer, and the server performs all necessary queries to return a complete answer.
Client → Resolver → Full lookup → Answer
Iterative Query
DNS server responds with the best answer it has, or refers to another nameserver. Client performs multiple queries.
Client → Multiple queries → Final answer
Non-Recursive Query
Server already has the answer in its cache, so it returns immediately without querying other servers.
Client → Cached answer → Immediate response
Factors Affecting DNS Performance
⚡ Speed Factors
- Cache hits (instant resolution)
- Proximity to DNS servers
- Fast recursive resolvers
- Low TTL for frequent changes
🐌 Slowdown Factors
- Cache misses (full lookup required)
- Multiple DNS hops
- Slow authoritative nameservers
- High TTL with stale data
See DNS Resolution in Action
Use our free DNS checker to see how DNS resolution works across 39+ global locations
Related guides
- What is DNS? — the basics of the Domain Name System.
- DNS propagation — how caching and TTL affect updates.
- DNS troubleshooting — diagnose common resolution problems.
- DNSSEC Studio — verify the signing chain for a domain.