Open this lesson in your favourite AI. It'll walk you through the why, explain the demo, and quiz you on the try-it list.
DNS is the most-cached system in your stack and the one engineers least understand — TTLs you set today govern how fast a failover takes effect tomorrow. Negative caching means a typo'd record propagates a no-answer for 5 minutes by default, and recursive resolvers in front of your users won't refresh just because you fixed it.
Trace a DNS query end-to-end through the recursive resolver chain.
dig +trace example.com and label each hop: root, TLD, authoritative.Use these three in order. Each builds on the one before.
In one paragraph, explain how DNS resolution works like I'm new to it — what happens between typing a URL and getting an IP?
Walk me through a recursive DNS query step by step: stub resolver, recursive resolver, root, TLD, authoritative — including caching at each tier.
Given a planned datacenter failover at 02:00 UTC, what TTL strategy do you set 24 hours before and 1 hour before the cutover, and why?
# Route 53 hosted zones
aws route53 list-hosted-zones --query 'HostedZones[*].[Name,Id]' --output table
# Inspect a record's TTL
aws route53 list-resource-record-sets --hosted-zone-id <zone-id> \
--query 'ResourceRecordSets[?Type==`A`].[Name,TTL]' --output table
# Trace resolution from root → TLD → authoritative
dig +trace example.com
# Check what your local resolver sees (and its TTL countdown)
dig example.com +noall +answer