The DNS deep dive.
Beyond the surface explanation. Six animated chapters covering the DNS namespace, recursive versus iterative resolution, cache layers with their TTLs, glue records, NXDOMAIN caching, and what `dig +trace` actually shows you.
DNS deep dive animated tutorial. Covers recursive vs iterative resolution, root and TLD servers, authoritative nameservers, cache layers, TTLs, glue records, NXDOMAIN negative caching, and dig +trace.The DNS surface is "name to IP". The deep version is a hierarchical tree, cache layers everywhere, TTLs that decide what stales when, and a debug tool that bypasses your cache to show the truth.
- Β·Comfortable with the URL flow lesson (have seen DNS once)
- Β·Know roughly what an IP address is
- Β·Helpful: you've run `dig` or `nslookup` at the terminal
Name the four roles in the chain (client, recursive, root/TLD, authoritative), explain TTLs, identify when glue records matter, and read `dig +trace`.
pace: 12 minutes
The DNS namespace is a tree
DNS isn't one giant database β it's a hierarchical tree. The root is at the top ("."), then top-level domains like .com / .net / .org, then second-level domains like example.com, then any subdomains. Each level is run by different organizations that delegate down. Reading a hostname right to left is reading the tree top to bottom.
DNS feels mysterious because every observer sees a different answer β your browser's cache, your OS's resolver, your ISP's recursive, the authoritative server. They're probably all right; they're just synced at different points in TTL time. When in doubt: ask the authoritative server directly (dig +trace finds it for you).
$dig example.com$dig example.com @1.1.1.1$dig example.com +short$dig example.com A AAAA MX TXT$dig +trace example.com$dig +noall +answer example.com$dig -x 1.1.1.1$dig SOA example.com$dig NS example.com$nslookup example.com$host example.com$getent hosts example.com$systemd-resolve --flush-caches$resolvectl statistics$/etc/resolv.conf$/etc/nsswitch.confWho does the actual iterative work when you type a URL?
You change your website's IP on Friday and want users to see the new address fast. What should you do BEFORE the change?
Why are GLUE records needed for example.com when its nameservers are ns1.example.com and ns2.example.com?
`dig example.com` returns the old IP, but `dig +trace example.com` returns the new IP. What's most likely going on?
These aren't graded β they're just for active recall, which is what actually makes the lesson stick.
DNS lookup, in your browser
Resolve any hostname against a public resolver and see the record types, TTLs, and answer chain β the same things `dig` would show you locally.
keep going β these pair well with what you just learned.
What happens when you type a URL?
The most-asked interview question, animated. Five chapters: DNS β TCP β TLS β HTTP β Render. Step through each at your own pace.
OSI / TCP-IP layers
A packet wrapped layer-by-layer, then unwrapped on the other side. Watch headers stack and peel off β OSI 7 and TCP/IP 4 side by side.
NAT and routing
How packets cross networks. Source NAT, destination NAT, conntrack, routing tables β visualized with real IPs.