DNS Diagnostics
Propagation checks, record lookups, DNSSEC validation, and ownership context for domain operations.
DNSnexus centralizes tool execution, educational guidance, and shareable result URLs so teams can debug faster without account friction.
Each category page groups focused tools so operators can move from broad checks to specific root-cause validation.
Propagation checks, record lookups, DNSSEC validation, and ownership context for domain operations.
SPF, DKIM, DMARC, MX, SMTP, compliance, and reporting checks for sender trust.
Route, ownership, address planning, and path diagnostics for infrastructure troubleshooting.
Header inspection, redirects, crawlability signals, and link structure analysis.
TLS, DNS, email, and website posture checks with guided hardening workflows.
Quick geolocation and network ownership context for incident and abuse triage.
Guides explain implementation choices, failure modes, and verification strategy for recurring infra tasks.
When you update a DNS record — whether you're pointing a domain to a new server, switching providers, or adding an MX record — you won't see the change everywhere at once. Understanding how DNS propagation works is essential for anyone managing infrastructure, because the "24–48 hours" answer most guides repeat tells you nothing useful. The real timeline depends on TTL values you set days earlier, the behaviour of resolvers across dozens of independent networks, and factors entirely outside your control. This guide breaks down the actual mechanism: the hierarchy, the caching chain, resolver-specific behaviour, and the downstream effects on email, SSL, and CDN delivery.
When an email arrives claiming to be from your domain, the receiving mail server has no built-in way to verify that claim is legitimate — unless you've published an SPF record. An **SPF record explained** simply is a DNS TXT record that tells the world which servers are authorised to send email on your behalf. Without one, anyone can forge your domain in the From address and receiving servers have no mechanism to detect it. With SPF misconfigured — specifically by exceeding the 10-lookup limit or using the wrong qualifier — your legitimate mail fails authentication just as reliably as a spammer's forged message would. This guide covers everything from the mechanism to the syntax to the traps that catch experienced sysadmins.
When you look at a traceroute hop, investigate a suspicious IP address, or try to understand why traffic is routing through an unexpected country, a single piece of information cuts through the noise faster than anything else: the Autonomous System Number. An **ASN lookup** tells you which network operator owns the IP address in question — whether that's a major cloud provider, a regional ISP, a university, a CDN, or a hosting company operating out of a specific jurisdiction. This guide explains what autonomous system numbers are, how BGP uses them to route traffic across the internet, and how to use ASN lookups effectively in real diagnostic and triage workflows.
This section is intentionally open and fully rendered so users and crawlers can read the complete context.
Start with the directory, jump into a workflow path, or open guide-driven diagnostics based on your current operational objective.