Sign up to access this lesson
Click here to sign up and get access to this lesson!

Saving Progress...
In this Video:
- We will demonstrate the difference between recursive and iterative queries.
- Discuss the reasons why you may want to disable recursive queries.
- Discuss the effects of disabling recursion.
- Demonstrate how to disable recursive queries
What is a Recursive Query?
- A recursive query is one where the DNS server will take responsibility for a full answer (name resolution) to a query or give an error.
- A server that sends a recursive query will contact other servers to attempt to resolve that query.
What is an Iterative Query?
- An iterative query is a query in which the DNS server responds with the best information (a referral) that it has either from its zone files or its cache.
- A server that sends an iterative query does not attempt to contact other DNS servers for an answer to obtain a result.
Here is an example of a recursive and an iterative query.

- A DNS resolver (R) is indicated from the PC. The user has typed in the host name gopro.com into their computers browser. The browser checks the local cache (1) to see if the IP address of gopro.com is in the computer’s memory, it is not. The resolver sends a recursive query (2) for the IP address of gopro.com to the ISP’s DNS server. ISP DNS server looks up the address of gopro.com in its cache, and does not find it. If it would have found it, it would have returned the query back to the PC and the transaction would have been complete.
- The ISP’s DNS resolver (R) sends an iterative query (3) to the root hints servers. Every DNS server has a root hints file. This file contains the host names and IP addresses of the root servers on the internet.
- An iterative query is different than a recursive query. An iterative query works like this. If the DNS server does not know the answer, but has information that will help resolve the query it will respond back with this information. The root hints server knows nothing about gopro.com, but it does know about the next level in the DNS hierarchy the .coms, or TLD (Top Level Domains), so the root server sends a referral back to the ISP’s resolver pointing to .com.
- Now that the ISP’s resolver knows about .com. The ISP DNS resolver sends a new iterative query (4) to the .com asking what is the IP address of gopro.com. The .com servers won’t have the address for gopro.com but will know the authoritative name servers for gopro.com.
- Using this information, the ISP DNS server will send a final iterative query (5) to the DNS authoritative name servers at gopro.com and obtain the IP address for gopro.com.
- The PC’s browser receives it’s answer to its recursive query and places the information into its cache and initiates an HTTP session to the IP address of gopro.com
The whole process took four queries:
- – A recursive query from the desktop PC (resolver) to the ISP.
- – A iterative query from the ISP to the root hints servers.
- – A iterative query from the ISP to the .com servers
- – A iterative query from the ISP to authority DNS servers at gopro.com
This may seem like a lot of queries for one address but once the process has been completed each step of the process is now stored in the server’s cache. If the PC user typed microsoft.com into his browser to his local DNS server, the .com would already be stored in his ISP’s local cache. The ISP does not need to contact a Root Hints server again. This time the ISP DNS server would contact the .com server to obtain the authoritative servers for microsoft.com.
Sign up to access the rest of this lesson
You must either log in or sign up to access this lesson.
CURRICULUM
Course Introduction • 10min
0 / 2 lessons complete
Instructor and Course Introduction
Video | 7 min
What's New in Windows Server 2016 DNS
Free lesson
Video | 3 min
DNS Basics • 56min
0 / 8 lessons complete
What is DNS
Video | 3 min
Installing the DNS Windows Server Role
Video | 6 min
Building DNS Server Quiz
Quiz | 10 Questions
The Hosts File
Video | 4 min
DNS Console Overview
Video | 7 min
Recursive and Iterative Queries
Video | 8 min
DNS Basics LAB
Video | 10 min
DNS Basics Quiz
Quiz | 8 Questions
DNS Resource Records • 45min
0 / 5 lessons complete
DNS Resource Record Types
Video | 3 min
Creating the mytestzone Forward Lookup Zone
Text | 2 min
Creating DNS Resource Records
Video | 4 min
Creating DNS Resource Records Lab
Lab | 30 min
DNS Resource Records Quiz
Quiz | 7 Questions
DNS Zones • 4hr 11min
0 / 12 lessons complete
DNS Zones
Video | 4 min
Creating a Forward and Reverse Lookup Zone
Video | 5 min
Creating a Secondary Zones
Video | 9 min
Stub Zone Creation
Video | 11 min
Active Directory Zone Replication
Video | 12 min
Implementing DNS Forwarding
Video | 8 min
Implementing Conditional DNS Forwarding
Video | 7 min
Forward and Reverse Zone Creation Lab
Lab | 60 min
Creating a Secondary Zone Lab
Lab | 30 min
Conditional Forwarding Lab
Lab | 60 min
Creating a Stub Zone Lab
Lab | 30 min
DNS Zones Quiz
Quiz | 15 Questions
DNS Delegation • 50min
0 / 4 lessons complete
Domain Name System and DNS Delegation
Video | 7 min
Windows 2016 Server and DNS Zone Delegation
Video | 8 min
DNS Delegation Lab
Lab | 30 min
QUIZ - Domain Name System and DNS Delegation
Quiz | 5 Questions
DNS Security Techniques • 36min
0 / 5 lessons complete
DNS Security Techniques Overview
Video | 9 min
Configuring DNS Cache Locking
Video | 5 min
Configuring DNS Socket Pools
Video | 6 min
Configuring Response Rate Limiting
Video | 8 min
DNS Security Techniques Quiz
Quiz | 8 Questions
Advanced DNS Topics • 22min
0 / 5 lessons complete
Overview of Advanced Topics
Video | 1 min
Enabling Round Robin and Netmask Ordering
Video | 5 min
Configuring Recursion
Video | 4 min
IPV4 and IPV6 Root HInts
Video | 6 min
Advanced DNS Topics Quiz
Quiz | 6 Questions
DNS Security (DNSSEC) • 1hr 16min
0 / 6 lessons complete
Windows DNS Security Overview
Video | 7 min
Symmetric vs Asymmetric Encryption
Video | 5 min
Installing DNSSEC on Windows 2016 Server
Video | 12 min
DNSSEC Client Install
Video | 7 min
DNSSEC (DNS Security Lab)
Lab | 30 min
DNSSEC Quiz
Quiz | 15 Questions
DNS Policies • 55min
0 / 6 lessons complete
DNS Policies Background Information
Video | 8 min
Configuring DNS Filtering
Video | 7 min
Configuring Split Brain DNS in an Active Directory Environment
Video | 12 min
Configuring DNS Selective Recursion Policy
Video | 7 min
Configuring a Traffic Management Policy
Video | 11 min
DNS Policies Quiz
Quiz | 10 Questions
PowerShell for DNS • 1hr 27min
0 / 6 lessons complete
PowerShell for DNS Part 1
Video | 2 min
PowerShell for DNS Part 2
Video | 5 min
PowerShell for DNS Part 3
Video | 10 min
PowerShell for DNS Part 4
Video | 5 min
PowerShell for DNS LAB
Lab | 60 min
Powershell for DNS Quiz
Quiz | 5 Questions
Troubleshooting DNS Issues - Troubleshooting Tools • 1hr 39min
0 / 8 lessons complete
Troubleshooting Tools Every IT Pro Must Know
Video | 9 min
The Events Viewer Overview
Video | 6 min
Subscriptions
Video | 9 min
Monitoring and Debug Logging
Video | 9 min
Trouble-Shooting DNS Client Issues
Video | 4 min
Troubleshooting Subscriptions Lab
Lab | 30 min
DNS Troubleshooting Lab
Lab | 30 min
DNS Troubleshooting Quiz
Quiz | 2 Questions