All Products
Search

This Product

    Alibaba Cloud DNS:FAQ about adding DNS records

    Document Center

    Alibaba Cloud DNS:FAQ about adding DNS records

    Last Updated:Jun 03, 2026

    Answers common questions about configuring DNS records.

    FAQ

    How do I point a domain name to a website server address?

    Pointing a domain name to a website server is called domain name resolution, which lets users access an IP-based service through an easy-to-remember domain name. For more information, see Add a DNS record.

    What record types does Alibaba Cloud DNS support?

    Alibaba Cloud DNS supports the following record types:

    Record type

    Description

    Commonality

    A record

    Resolves a domain name to a specified IPv4 address. Commonly used for website domain resolution.

    5/5. A fundamental record type, required for nearly every domain name.

    CNAME record

    Resolves a domain name to another domain name. Commonly used for website resolution, CDN acceleration, enterprise email, and integrating with Global Traffic Manager.

    5/5. Widely used for creating aliases. Its versatility makes it a common choice for CDNs and cloud services.

    MX record

    Specifies the mail servers for a domain and ranks them by priority.

    4/5. Required for any email service. This record is not needed for domains without an email service.

    AAAA record

    Resolves a domain name to a specified IPv6 address. Used for websites accessible over IPv6.

    4/5. As IPv6 adoption accelerates, most cloud services now support it by default.

    TXT record

    Stores text information about a domain that external services can read. It is often used for domain ownership verification, issuing digital certificates, creating an SPF record for anti-spam policies, and domain recovery.

    5/5. Essential for various verification tasks, such as for SSL certificates, SPF, email services, and DNS ownership checks.

    ALIAS record

    Functions like a CNAME record but can coexist with other records on a root domain. It resolves the conflict of configuring both a CNAME record and other record types, such as an MX record, on the same root domain.

    2/5. Used to resolve conflicts between CNAME records and other records, such as MX or TXT, on the same domain.

    Explicit URL Forwarding and Implicit URL Forwarding

    Points a domain name to an existing website.

    2/5. Supported by select DNS providers and primarily used for domain redirection.

    NS record

    Delegates management of a DNS zone to specific authoritative name servers. This is often used to delegate a subdomain to another DNS provider for resolution.

    3/5. Common for subdomain delegation. Changes are infrequent.

    SRV record

    Specifies the location (hostname and port) of servers for specific services. It is often used for Microsoft directory services.

    2/5. Required for certain protocols used in instant messaging and enterprise services. Rarely used for standard websites.

    CAA record

    Specifies which Certificate Authorities (CAs) are authorized to issue certificates for a domain. This helps prevent the mis-issuance of certificates and enhances website security.

    2/5. Enhances security for SSL/TLS certificate management. Used in specific security-conscious scenarios.

    PTR record

    Maps an IP address to a domain name for a reverse DNS lookup, which verifies that an IP address corresponds to a specific domain.

    1/5. Primarily used for reverse DNS lookup, such as for email servers. Rarely needed for standard websites.

    SVCB record

    Improves service discovery by providing protocol and endpoint information. This helps clients make better connection decisions to enhance performance and security.

    1/5. An emerging record type used with newer protocols like HTTP/3 and QUIC. Currently not in wide use.

    HTTPS record

    A specialized version of the SVCB record that describes HTTPS services.

    1/5. A new standard for HTTPS optimization. Browser support is gradually increasing, but it is not yet commonly used for standard websites.

    For more information, see Add a DNS record.

    Does Alibaba Cloud DNS support port resolution?

    No. Record types such as A, AAAA, and CNAME map domain names to IP addresses without port information, so api.example.com can resolve only to 1.1.x.x. To access the service, you must specify the port in the client URL, such as http://api.example.com:8080/. If you do not want to display the port in the domain name, you can hide it by setting up an Nginx reverse proxy for HTTPS forwarding and port hiding.

    Use URL forwarding

    The URL forwarding record type supports forwarding domain name requests to another URL, which can be in the format of domain name + port number. This acts as a reverse proxy but is not covered by an SLA. For a reliable solution, set up an Nginx reverse proxy for HTTPS forwarding and port hiding.

    Scenario: You have a domain name cloud-example.com. The service IP address is 1.1.x.x, and the service port is 8888. You have already configured a DNS record, and the service can be accessed at http://demo.cloud-example.com:8888. Or, you have not configured a DNS record, and the service can only be accessed at http://1.1.x.x:8888.

    Goal: You want to access the service at http://www.cloud-example.com without the port number appearing in the URL.

    Solution:

    1. If the service can only be accessed at http://1.1.x.x:8888, you must first configure a DNS record. For more information, see A record.

      Record Type

      A

      Host

      demo.cloud-example.com

      Record Value

      1.1.x.x

      After the DNS record takes effect, you can access the service at http://demo.cloud-example.com:8888.

    2. Configure an Implicit URL Forwarding forwarding record. For more information, see URL forwarding.

      Record Type

      Implicit URL Forwarding

      Host

      www.cloud-example.com

      Record Value

      http://demo.cloud-example.com:8888

      Note

      Q: Why not enter http://1.1.x.x:8888 directly as the record value?

      A: URL forwarding does not support URLs with IP addresses as record values.

      This lets you access the service at http://demo.cloud-example.com:8888 by visiting http://www.cloud-example.com.

    Does Alibaba Cloud DNS provide website building services?

    Alibaba Cloud DNS resolves domain names to server IP addresses but does not provide website building services. Build a website on an ECS instance.

    How do I configure DNS resolution for a domain name not registered with Alibaba Cloud?

    If your domain name is not registered with Alibaba Cloud, choose the applicable scenario:

    How do I point a domain name to another site?

    Choose a method based on your needs:

    • URL forwarding

      When to use: Redirecting users from Domain A to Domain B.

      Requirement: The source Domain A must have a valid ICP license, because the forwarding server of Alibaba Cloud is in the Chinese mainland.

    • CNAME record

      When to use: Mapping Domain A as an alias for Domain B so that accessing Domain A yields the same content as accessing Domain B.

      Requirement: CNAME handles DNS resolution only. The destination server must accept requests for the source domain and have proper SSL/TLS certificates, security policies, and firewall rules.

    Refer to Add a DNS record for instructions on adding CNAME or URL forwarding records.

    Note

    If Domain A does not have an ICP filing and you do not intend to apply for one, purchase a server outside the Chinese mainland and deploy a self-managed Nginx reverse proxy for URL forwarding. For configuration details, refer to Self-managed Nginx: HTTPS forwarding and port mapping.

    What do 'host' and 'record value' mean?

    • Host: The subdomain prefix. Enter @ for the primary domain name. For example, if your domain name is example.com and you want visitors to use www.example.com, enter www as the host.

    • Record value: The value depends on the record type. Examples for common types:

      • A record: The record value is an IPv4 address, such as 192.0.2.0.

      • AAAA record: The record value is an IPv6 address, such as 2001:db8::.

      • CNAME record: The record value is a domain name, such as www.example.com.

      • MX record: The record value is the domain name of a mail server, such as mail.example.com. It usually includes a priority value, such as 10 mail.example.com.

      • NS record: The record value is the domain name of an authoritative DNS server, such as ns1.example.com.

      All record types are described in Add a DNS record.

    Does Alibaba Cloud DNS support weighted round-robin?

    Yes. Weighted round-robin assigns different weights to each IP address, distributing traffic proportionally. This is useful for A/B testing. Configure weights.

    Does Alibaba Cloud DNS support anycast networks?

    Yes. Alibaba Cloud DNS uses a global anycast network to respond from the nearest server, reducing query latency and propagating record changes in seconds.

    Does Alibaba Cloud DNS support Dynamic Domain Name System (DDNS)?

    DDNS binds a frequently changing public IP to a fixed domain name in real time, enabling external access to home or office network devices. Alibaba Cloud DNS does not currently support DDNS.

    What is the default TTL for different DNS record types? Can I change these values?

    The default TTL for all record types is 10 minutes (600 seconds). The minimum TTL varies by edition:

    • Free Edition/Personal Edition: The minimum TTL is 10 minutes (600 seconds).

    • Ultimate Edition: The minimum TTL is 1 second.

    To modify the TTL value, see Configure TTL.

    Are there limits on the number of hosted domain names and DNS records in Alibaba Cloud DNS?

    Alibaba Cloud DNS does not limit hosted primary domain names. DNS record limits:

    • A maximum of 100,000 DNS records can be added for a single primary domain name, including records for all its subdomains.

    • For the same host or subdomain on the same resolution line and with the same record type, the Free Edition of DNS allows a maximum of 10 DNS records, while the paid editions allow a maximum of 100 DNS records.

    • For explicit/implicit URL forwarding records, the Free Edition supports 2 records, the Personal Edition supports 5 records, and the Enterprise Edition supports 10 records.

    The Premium Edition can exceed these limits. Version Comparison.

    Does Alibaba Cloud DNS support wildcard entries (wildcard DNS)? If so, what types are supported?

    For information about wildcard DNS support and how it takes effect, see Wildcard DNS.

    What should I do if the DNS settings interface shows that the traffic limit for this period has been exceeded?

    High invocation volume triggers global throttling. Use a term query to avoid this issue.

    A/AAAA records

    What is IPv6? Does Alibaba Cloud DNS support IPv6?

    IPv6 (Internet Protocol Version 6) is the next-generation protocol designed to replace IPv4. It solves IPv4 address exhaustion and enables more devices to connect to the Internet.

    Alibaba Cloud DNS supports IPv6. Add an AAAA record to enable IPv6 access. The Alibaba Cloud DNS server cluster also fully supports IPv6.

    Add a DNS record.

    Can a subdomain point to multiple IP addresses?

    Yes. Multiple IP addresses distribute queries across servers to reduce load. Alibaba Cloud DNS returns all configured addresses to the local DNS, which selects one for the visitor. Weight-based distribution is available through Configure weights.

    Can one ECS instance resolve more than two domain names?

    Yes. Multiple domain names or subdomains can all point to the same IP address:

    Are there any restrictions on the IP addresses that DNS records can point to?

    No. Any public or internal IP address is valid, though internal addresses are typically used only for testing.

    Can I enter an IP address outside China for a DNS record?

    Yes. Alibaba Cloud DNS does not restrict IP addresses by geographic location.

    If a subdomain is configured with both an IPv6 address and an IPv4 address, how does DNS resolve it?

    DNS returns an IPv6 address only if the client supports the IPv6 protocol stack.

    1. Example DNS record configuration:

    Record Type

    Host

    Resolution Line

    Record Value

    AAAA

    www

    Default

    ff03:0:0:0:0:0:x:x

    A

    www

    Default

    1.1.x.x

    Resolution effect:

    • Dual-stack client (IPv6 + IPv4): The client queries local DNS for both addresses. Alibaba Cloud DNS returns both. The client typically prefers IPv6.

    • IPv6-only client: Local DNS queries Alibaba Cloud DNS for the AAAA record and returns the IPv6 address.

    • IPv4-only client: Local DNS queries Alibaba Cloud DNS for the A record and returns 1.1.x.x.

    2. Example DNS record configuration:

    Record Type

    Host

    Line parsing

    Record Value

    AAAA

    www

    Outside China

    ff03:0:0:0:0:0:x:x

    A

    www

    Default

    1.1.x.x

    • Dual-stack client, outside the Chinese mainland: The client queries for both IPv6 and IPv4. Alibaba Cloud DNS returns both addresses. The client typically prefers IPv6.

    • IPv4-only client, outside the Chinese mainland: No IPv4 address is configured for the "Outside China" line, so resolution fails.

    • IPv4-only client, Chinese mainland: Alibaba Cloud DNS returns 1.1.x.x from the default line.

    • Dual-stack client, Chinese mainland: Only an IPv4 address is configured for the default line (no IPv6), so Alibaba Cloud DNS returns 1.1.x.x only.

    If a domain name resolves to multiple servers, can this achieve DNS load balancing?

    Yes. Weighted round-robin distributes traffic across IP addresses in custom proportions. Set equal weights (1:1) for load balancing. Configure weights.

    How do I use an SDK to add an A record and set its weight?

    1. Use addDomainRecord to add a DNS record. By default, A records use the polling mode.

    2. Use SetDNSSLBStatus to enable or disable weighted round-robin. Set Open=true to enable weighted round-robin for A or AAAA records.

    3. Obtain the RecordId of the DNS record and call UpdateDNSSLBWeight to modify the weight of the record.

      1. If you just added the DNS record in the first step, you can retrieve the RecordId from the return value.

      2. If the DNS record already exists, you can call DescribeDomainRecords to query the RecordId from the list of DNS records.

    CNAME records

    What is the difference between a CNAME record and URL forwarding?

    A CNAME record maps one domain name (alias) to another. URL forwarding redirects requests to a different URL, either implicitly (iframe) or explicitly (301/302 redirect). Key differences:

    • A CNAME record preserves the original URL in the address bar; explicit URL forwarding changes it.

    • CNAME is best for permanent domain mapping. URL forwarding suits temporary redirects, website migration, or hiding the actual address.

    Why do I see a conflict error between A and CNAME records when adding a record?

    A and CNAME records cannot coexist for the same host and request source line. Use different hosts or request source lines. Other conflict types are listed in DNS record conflict rules.

    Why do I see a conflict error between MX and CNAME records when adding a record?

    Different record types have different priorities, so some cannot coexist for the same host and resolution line. Conflicts can cause service unavailability. DNS record conflict rules.

    Can a CNAME record resolve to a specific path?

    No. CNAME records are designed to map one domain name to another, not to a specific file path or directory.

    Do I need to add a dot (.) at the end of a domain name when configuring DNS resolution?

    No. The dot at the end of a domain name represents the root domain. Alibaba Cloud DNS automatically adds it on the backend, so you do not need to add it.

    Why can't a CNAME record point to Baidu?

    Most large websites, including Baidu, block external CNAME records for security reasons. Use URL redirection (301 or 302) instead.

    Can I configure multiple CNAME records for a single domain name on a single line? How do DNS queries respond?

    Yes. Multiple CNAME records are returned based on their weights. Configure weights.

    TXT records

    Why is there an extra TXT record in my DNS records?

    Certain Alibaba Cloud products add a TXT record for domain ownership verification. For example, selecting Automatic DNS Validation for the Domain Validation Method on the SSL Certificates page adds a TXT record automatically. How do I select a domain validation method?

    When adding a record for automatic DNS validation, the system removes duplicate or conflicting records from your DNS service.

    MX records

    What does the priority of an MX record mean?

    Priority matters only with multiple MX records. The sending server delivers to the lowest-priority-number server first, then fails over to the next, continuing until delivery succeeds or all servers fail.

    Can I use a foreign trade mailbox for MX resolution?

    Yes. Configure mailbox resolution.

    Why do I see a conflict error between MX and CNAME records when adding a record?

    Different record types have different priorities, so some cannot coexist for the same host and resolution line. Conflicts can cause service unavailability. DNS record conflict rules.

    How do I configure DNS resolution for a mailbox not hosted by Alibaba Cloud?

    Choose the scenario that matches your setup:

    • The domain name is registered with Alibaba Cloud, uses Alibaba Cloud DNS, and uses a non-Alibaba Cloud mailbox product.

      Get the required DNS records from your mailbox provider. Configure mailbox resolution.

    • The domain name is registered with Alibaba Cloud, does not use Alibaba Cloud DNS, and uses a non-Alibaba Cloud mailbox product.

      Get the required DNS records from your mailbox provider, then contact your DNS provider to add them.

    • The domain name is not registered with Alibaba Cloud, uses Alibaba Cloud DNS, and uses a non-Alibaba Cloud mailbox product.

      Get the required DNS records from your mailbox provider. Configure mailbox resolution.

    NS records

    When adding a subdomain, I need to add an NS record under the primary domain, but I get an 'NS record conflicts with subdomain' error. What should I do?

    The 'NS record conflicts with subdomain' error usually occurs because multiple different types of DNS records exist at the same level. You can resolve this by carefully checking the existing DNS records, deleting the conflicting ones, and then adding the NS record. However, this operation may affect the resolution of other DNS records under the subdomain. For more information, see DNS record conflict rules.

    URL forwarding

    What is the difference between 301 and 302 redirection?

    301 (Permanently Moved): The old URL is permanently replaced. Search engines index the new URL and drop the old one.

    302 (Temporarily Moved): The old URL remains valid. Search engines index new content but keep the old URL.

    Both codes redirect the browser to a new URL specified in the response Location header.

    Choose 301 for permanent moves and 302 for temporary redirects.

    After I add a URL forwarding record, the resolution result from a `dig` command does not match the console settings. Why?

    URL forwarding records automatically create an underlying A record pointing to Alibaba Cloud DNS forwarding servers. A `dig` result showing an IP address like 203.107.XX.XX instead of your configured URL is normal.

    After I add a URL forwarding record, accessing the domain name displays an HTTP ERROR 502. Why?

    • If prompted that an ICP filing is required, verify that both the source and target domain names have valid ICP filings.

    • If a previously working URL forwarding record returns 502, the ICP filing may have become invalid.

    When I add a URL forwarding record for a domain name, why do I get an error about an abnormal ICP filing?

    URL forwarding routes through Alibaba Cloud servers in the Chinese mainland, so the source domain must have a valid ICP filing. The filing does not have to be through Alibaba Cloud.

    After I add an implicit URL forwarding record, accessing the domain name displays a blank page. Why?

    You can see an error message in your browser, such as Chrome: 

    Refused to display 'http://www.example.com/home.html' in a frame because it set 'X-Frame-Options' to 'sameorigin'.

    This is because the X-Frame-Options header is set on the target site, which prevents it from being nested in a frame. Contact your website technician to remove the X-Frame-Options configuration from the target site.

    After I add an implicit URL forwarding record, the page opens correctly, but the browser's address bar shows the target URL. Why?

    Check the JavaScript code on the target URL page. If you find the following code snippet, remove it.

    <script>
    if(window.top!=window.self){window.top.location=window.location};
</script>

    After I add a URL forwarding record, refreshing the page redirects to an incorrect address. Why?

    This usually happens if the target page (the site at the forwarded URL) contains JavaScript code that sets up a redirect. Contact your website technician to investigate.

    I added a URL forwarding record in Alibaba Cloud DNS, but a `dig` test does not return the corresponding A record and value. Why?

    If a `dig` command for the source domain name does not return an IP address related to 203.107.XX.XX, submit a ticket for Alibaba Cloud DNS, and our technical staff will handle it for you.

    After I add a URL forwarding record, opening the page displays an ERR_EMPTY_RESPONSE error. Why?

    This usually occurs during a CC attack when high QPS triggers the forwarding server to stop service. Use an alternative forwarding method.

    After I add a URL forwarding record, opening the page displays a 'Connection refused' error. Why?

    Symptom: No interception information is displayed in the console.

    Cause: The connection is blocked by a same-origin policy. Check the network path for the header of the last 200 OK response. It may contain a same-origin restriction.

    Solution: This issue is usually caused by the security policy settings of your website. We recommend that you check your configuration or use only explicit URL forwarding.

    2

    How many URL forwarding records can I set?

    The number of supported URL forwarding records varies by Alibaba Cloud DNS edition:

    • Free Edition: 2

    • Personal Edition: 5

    • Ultimate Edition: 10

    • Premium Edition: Unlimited

    Edition-specific limits are listed under URL Forwarding (Single Domain) in Version Comparison.

    Does URL forwarding support HTTPS configuration?

    The source domain supports HTTP only; the target supports both HTTP and HTTPS. Native HTTPS forwarding is not supported due to certificate management and security constraints. To forward HTTPS requests, configure an HTTPS redirect on your source server. Example Nginx configuration:

    server {    
  listen 443 ssl;    
  server_name yourdomain.com;    
  ssl_certificate     /path/to/cert.pem;    
  ssl_certificate_key /path/to/cert.key;    
  return 301 https://targetsite.com$request_uri;
}

    Does URL forwarding support redirection with path parameters?

    Explicit and implicit URL forwarding do not support configuration with parameters.