A DNS zone with all the records it contains.

Edition of a DNS Zone object


Screenshot of section Zone of tab DNS zone of type DNS zone
  • Base: Object base
  • Zone name: Zone name
  • Reverse zones: Reverse zones for this zone in the form or

SOA record

Screenshot of section SOA record of tab DNS zone of type DNS zone
  • Primary DNS server: Domain name of the name server that was the original or primary source of data for this zone
  • Mail address: Domain name which specifies the mailbox of the person responsible for this zone
  • Serial number: Version number of the original copy of the zone
  • Refresh: Time interval before the zone should be refreshed
  • Retry: Time interval that should elapse before a failed refresh should be retried
  • Expire: Time value that specifies the upper limit on the time interval that can elapse before the zone is no longer authoritative
  • TTL: Minimum TTL field that should be exported with any RR from this zone


Screenshot of section Records of tab DNS zone of type DNS zone

The DNS records for this zone

Supported record types:


IPv4 address record.

Screenshot of record type A


IPv6 address record.

Screenshot of record type AAAA


Location of database servers of an AFS cell.

Screenshot of record type AFSDB


DNS Certification Authority Authorization, constraining acceptable CAs for a host/domain.

Screenshot of record type CAA


Certificate record.

Screenshot of record type CERT


Alias of one name to another: the DNS lookup will continue by retrying the lookup with the new name.

Screenshot of record type CNAME


DomainKeys Identified Mail (DKIM) is an email authentication method designed to detect forged sender addresses in email (email spoofing).

Screenshot of record type DKIM


DMARC (Domain-based Message Authentication, Reporting and Conformance) is an email authentication protocol. It is designed to give email domain owners the ability to protect their domain from unauthorized use, commonly known as email spoofing.

Screenshot of record type DMARC


The record used to identify the DNSSEC signing key of a delegated zone.

Screenshot of record type DS


Key record.

Screenshot of record type KEY


Key exchanger record.

Screenshot of record type KX


Location record, specifies a geographical location associated with a domain name.

Screenshot of record type LOC


Mail exchange record, maps a domain name to a list of message transfer agents for that domain.

Screenshot of record type MX


Naming authority pointer, allows regular-expression-based rewriting of domain names.

Screenshot of record type NAPTR


Name server record, delegates a DNS zone to use the given authoritative name servers.

Screenshot of record type NS


Next secure record, part of DNSSEC, used to prove a name does not exist.

Screenshot of record type NSEC


Pointer to a canonical name. The most common use is for implementing reverse DNS lookups.

Screenshot of record type PTR


Signature for a DNSSEC-secured record set.

Screenshot of record type RRSIG


Signature record (replaced by RRSIG for DNSSEC).

Screenshot of record type SIG


Sender Policy Framework (SPF) is an email authentication method designed to detect forging sender addresses during the delivery of the email.

Screenshot of record type SPF


Generalized service location record, used for newer protocols instead of creating protocol-specific records such as MX.

Screenshot of record type SRV


Resource record for publishing SSH public host key fingerprints in the DNS System, in order to aid in verifying the authenticity of the host.

Screenshot of record type SSHFP


Text record, originally for arbitrary human-readable text in a DNS record. Since the early 1990s, however, this record more often carries machine-readable data.

Screenshot of record type TXT

The records with (TXT) appended are actually stored as TXT records in the zone, but FusionDirectory still provides a specific interface to help you correctly use them.