Reverse DNS (PTR) Lookup: Finding Domains from IP Addresses
Reverse DNS (PTR) Lookup: Finding Domains from IP Addresses
Standard DNS resolution works in one direction: domain name to IP address. You query example.com and get back 93.184.216.34. Reverse DNS works the opposite way — you start with an IP address and discover which domain name is associated with it. 93.184.216.34 resolves back to example.com.
In this guide, we’ll cover how PTR records power reverse DNS, why they matter for email and security, and how to perform reverse lookups yourself.
What Are PTR Records?
Reverse DNS lookups rely on PTR (Pointer) records — a DNS record type that maps an IP address to a domain name.
IPv4: The in-addr.arpa Zone
For IPv4, reverse DNS uses the in-addr.arpa domain. The IP address octets are reversed and appended to this zone:
IP address: 8.8.8.8
PTR lookup: 8.8.8.8.in-addr.arpa → dns.googleIPv6: The ip6.arpa Zone
IPv6 reverse DNS uses the ip6.arpa zone, with each hexadecimal digit listed in reverse order. Because IPv6 addresses are much longer, PTR records become quite lengthy:
IPv6: 2001:4860:4860::8888
PTR: 8.8.8.8.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.6.8.4.0.6.8.4.1.0.0.2.ip6.arpaWhy Reverse DNS Matters
PTR records aren’t just a curiosity — they play a critical role in several key areas.
1. Email Server Authentication
Most mail servers check the PTR record of the sending IP when receiving email. If no PTR record exists, or if it doesn’t match the sending domain, the message is likely to be flagged as spam or rejected outright. Major providers like Gmail and Outlook perform PTR verification by default.
2. Log Analysis and Readability
Raw IP addresses in server logs are difficult to interpret. With reverse DNS, you can see meaningful hostnames like crawl-66-249-66-1.googlebot.com, making log analysis far more practical and efficient.
3. Network Troubleshooting
Tools like traceroute use reverse DNS to identify which organization operates each hop in a network path. This makes it much easier to pinpoint bottlenecks and diagnose connectivity issues.
4. Security Verification
Firewalls, intrusion detection systems (IDS), and other security tools use reverse DNS to verify the identity of connecting IPs. Traffic from IP addresses without valid PTR records may be flagged as suspicious.
How to Perform a Reverse DNS Lookup
Command-Line Tools
You can run reverse DNS queries from the terminal using these commands:
# Using nslookup
nslookup 8.8.8.8
# Using dig (recommended)
dig -x 8.8.8.8
# Using host
host 8.8.8.8The dig -x command provides the most detailed output, including the PTR record along with TTL values, the responding server, and other metadata.
Web-Based Tools
If you prefer a graphical interface, try the DNS lookup tool on ip.utilo.kr. You can query PTR records and other DNS record types directly from your browser — no installation required.
How to Set Up PTR Records
Unlike standard DNS records (A, CNAME, etc.) that you configure through your domain registrar, PTR records must be set up by the entity that owns the IP address — typically your ISP or hosting provider.
- Cloud providers (AWS, GCP, Azure): Usually configurable through the management console
- VPS / Dedicated servers: Request through the hosting provider’s control panel or support
- ISP-assigned IPs: Contact your ISP directly (requires a static IP)
What Happens Without Reverse DNS
If PTR records aren’t configured for your IP, you may encounter these problems:
- Email bounces: Receiving servers reject mail from IPs without PTR records
- Higher spam scores: Spam filters assign elevated risk scores to unverified IPs
- Reduced service trust: Some APIs and services throttle or block requests from servers without PTR records
- Harder troubleshooting: Network diagnostics become more difficult when IPs can’t be resolved to hostnames
For mail servers in particular, PTR records are essential alongside SPF, DKIM, and DMARC. To learn more about how IP configuration affects email, read Email Deliverability and IP Addresses.
Wrapping Up
Reverse DNS is a foundational tool for network management, email authentication, and security verification. To understand the broader DNS system, check out How DNS Works. For a hands-on guide to querying different DNS record types, see DNS Lookup Guide.
Ready to check PTR records for an IP address? Try the tool below.