Definition

iterative DNS query

Rahul Awati

By

Rahul Awati

What is iterative DNS query?

An iterative DNS query is a request for a website name or URL. However, with this query type, the domain name system (DNS) server does not fetch the complete answer for the query. Rather, it provides a referral to other DNS servers that might have the answer. Thus, if the queries server does not have the IP address requested, it forwards it to another DNS server until the answer is found.

There are primarily three types of DNS queries, depending on how a request is processed. Two common queries are recursive and iterative. In a recursive query or lookup, one DNS server communicates with many DNS servers to find an IP address and return it to the requesting client. It is similar to a client saying, "Find the IP address for this domain and don't get back to me until you do."

In contrast, in an iterative DNS query the client communicates directly with each DNS server. This approach is analogous to the client telling the DNS resolver to provide the address of the next DNS server in the lookup process so the client can pursue the IP address on their own. Iterative DNS queries are also known as nonrecursive DNS queries.

Iterative requests are used to return information from servers that aren't always able to sustain the workload of performing start-to-finish query responses. This could be a DNS server for a domain that is prioritizing traffic to its sites or to root hints or an authoritative server that must maintain availability.

how a DNS server works — DNS servers talk to each other to answer a query from a client.

How an iterative DNS query works

An iterative DNS query responds directly to the client with an address for another DNS server. The client queries each DNS server in an iterative manner until one of them finds and fetches the correct IP address for the requested domain.

The DNS server responds to iterative queries that have no local information through "referral." The referral points to a DNS server that is authoritative on a domain namespace and those for lower levels of a domain space. The referrals continue until a DNS server is found that is authoritative to the queried site (and can therefore reveal its IP address) or until an error is returned or a time out is reached.

Here's how iterative queries work:

In this example, the DNS server is 172.16.200.30.

three different types of DNS server — Three kinds of DNS server interoperate to provide proper and present mappings of IP addresses with domain names.

Step 1. The client enters www.techtarget.com into the browser and hits Enter. A DNS query for the IP address (a record) is sent by the operating system's resolver to the DNS server.

Step 2. The DNS server receives the query and starts looking through its tables (cache) to find the IP address for www.techtarget.com. However, the entry does not exist in its tables.

Step 3. In a recursive query, the DNS server would query the root server for the answer. But because this is an iterative query, the DNS server will reply with a referral to a root server. The resolver will then query the root server for the IP address.

These three steps are repeated until the IP address is found and delivered to the client.

Iterative DNS queries vs. recursive DNS queries

In a recursive query, the client only sends the request to the first DNS server. If the server cannot answer, it will send the request to the next server. The process continues until the query is resolved. The reply to the query can be an answer (IP address) or an error message.

DNS servers cooperate to resolve an IP address — DNS servers cooperate to correctly resolve an IP address from a domain name.

In an iterative query, the DNS server does not query another server for the IP address. Instead, it provides the client with a referral to a DNS root server. The referral could be to a lower-level DNS server that is delegated to be "authoritative" for the DNS namespace related to the DNS query. After getting the referral from the higher-level DNS server, the DNS client sends a DNS query to the lower-level DNS server.

It is the client's responsibility to send the query to successive servers for resolution. The query will be resolved when it hits a server that is authorized for the domain name. Other possible outcomes are an error or a timeout. In this case, it is the job of the local OS resolver to find the answer from the referral provided. That said, if the queried higher-level DNS server has the IP address, it will fetch it for the client and no further queries will be required.

Iterative requests are made by both iterative DNS servers and recursive DNS servers. The requests made by recursive servers to other DNS servers are iterative. At the level of root DNS, all servers are iterative because they are the end of the line. The availability of root servers is crucial to the proper functioning of the internet.

Learn about DNS server troubleshooting for Linux and Windows, and explore ways to best secure DNS.

This was last updated in December 2022

Continue Reading About iterative DNS query

The 3 types of DNS servers and how they work

Learn to perform a DNS backup and restore

How can DNS privacy issues be addressed?

The role of name resolution in networking

How to defend against malicious IP addresses in the cloud

networking (computer)
Networking, also known as computer networking, is the practice of transporting and exchanging data between nodes over a shared ...
What is SD-WAN (software-defined WAN)? Ultimate guide
Software-defined WAN is a technology that uses software-defined networking concepts to distribute network traffic across a wide ...
local area network (LAN)
A local area network (LAN) is a group of computers and peripheral devices that are connected together within a distinct ...

identity management (ID management)
Identity management (ID management) is the organizational process for ensuring individuals have the appropriate access to ...
fraud detection
Fraud detection is a set of activities undertaken to prevent money or property from being obtained through false pretenses.
single sign-on (SSO)
Single sign-on (SSO) is a session and user authentication service that permits a user to use one set of login credentials -- for ...

CIO

IT budget
IT budget is the amount of money spent on an organization's information technology systems and services. It includes compensation...
project scope
Project scope is the part of project planning that involves determining and documenting a list of specific project goals, ...
core competencies
For any organization, its core competencies refer to the capabilities, knowledge, skills and resources that constitute its '...

Workday
Workday is a cloud-based software vendor that specializes in human capital management (HCM) and financial management applications.
recruitment management system (RMS)
A recruitment management system (RMS) is a set of tools designed to manage the employee recruiting and hiring process. It might ...
core HR (core human resources)
Core HR (core human resources) is an umbrella term that refers to the basic tasks and functions of an HR department as it manages...

Customer Experience

martech (marketing technology)
Martech (marketing technology) refers to the integration of software tools, platforms, and applications designed to streamline ...
transactional marketing
Transactional marketing is a business strategy that focuses on single, point-of-sale transactions.
customer profiling
Customer profiling is the detailed and systematic process of constructing a clear portrait of a company's ideal customer by ...

Close