Enter a hostname to resolve its A (IPv4) and AAAA (IPv6) records.
DNS translates hostnames into IP addresses. A records return IPv4 addresses, while AAAA records return IPv6 addresses. Many domains return multiple IPs for redundancy and load balancing.
A hostname-to-IP lookup is most useful when you treat the output as live routing context, not as a guaranteed picture of the origin server. Many domains resolve to several addresses because of load balancing, failover, anycast, or CDN infrastructure. That means a single lookup can show different answers over time or from different resolvers without anything being wrong. The right question is usually not "why are there multiple IPs?" but "do these answers make sense for the service I expect to reach?"
Start by comparing and results. If a hostname only returns IPv4, an IPv6 connection problem may be normal rather than broken. If it returns both, differences in user experience can come from one stack being misconfigured. After you have the resolved IPs, continue with Reverse DNS to inspect hostnames, ASN Lookup to see which network announces the range, and WHOIS / RDAP if you need allocation or registrar context.
This layered workflow is especially important when a site sits behind Cloudflare, another CDN, or a reverse proxy. In those cases the resolved IP may belong to an edge network rather than the real origin. That is not a bug in the tool; it reflects how the hostname is intentionally exposed on the public internet. Pairing hostname resolution with IP location and reputation checks gives you a much safer interpretation than using the first returned IP alone.
Hostname resolution is often the first step when diagnosing connectivity issues. If a website is unreachable, resolving its hostname confirms whether DNS is returning addresses at all. A missing A record means IPv4 traffic cannot reach the server, while a missing AAAA record means IPv6-only clients will fail. Both situations are worth checking before assuming the server is down.
TTL (time-to-live) values in DNS responses control how long resolvers cache a record. After a DNS change such as a migration or failover, stale cache entries can cause different users to reach different IPs until the old TTL expires. If you see unexpected addresses, try resolving from a different network or waiting for the TTL window to pass.
For domains behind a CDN like Cloudflare or Fastly, hostname resolution typically returns edge node IPs, not the origin server. This is intentional — the CDN handles caching and DDoS protection. To confirm whether the resolved IP belongs to a CDN, follow up with ASN Lookup to see which network announces the range, or WHOIS / RDAP for allocation details.
Concrete examples make the output much easier to read. A small brand site hosted on a single VPS usually returns one A record with one IPv4 address in the host provider's range. DigitalOcean droplets resolve into 134.209.0.0/16, 167.71.0.0/16, or similar; Hetzner Cloud uses 78.46.0.0/15 and others; Linode shows IPs like 172.104.0.0/15. When you see a single A record in one of these ranges, you are almost certainly looking at the true origin server with no CDN in between.
CDN-fronted hostnames look very different. Cloudflare-protected sites typically return two A records like 104.21.x.x and 172.67.x.x - both are Cloudflare edge IPs, not the origin. Fastly resolves to anycast addresses such as 151.101.0.0/16. Amazon CloudFront returns answers in 13.224.0.0/14 ranges with very short TTLs because the edge node is chosen per request. If a hostname returns four or more rotating IPs with TTLs under 60 seconds, you are almost always looking at a CDN.
Large platforms often return many A and AAAA records to spread load. google.com currently returns one IPv4 plus one IPv6, but twitter.com historically returned four A records for round-robin DNS load balancing. Some Akamai customers see eight or more A records, all from 104.64.0.0/10 Akamai space. None of these patterns indicates a problem - they reflect how the platform chose to expose itself to the public internet.
The most diagnostic pattern is divergence between A and AAAA. Some sites publish IPv4-only because their IPv6 path is broken; others publish both but the AAAA target is misconfigured. If you can reach the site with curl over IPv4 but not IPv6, the hostname-to-IP output will show whether the AAAA record exists at all and whether its target matches the A record's infrastructure family.
The first pitfall is assuming a single resolution snapshot is authoritative. Many domains use geo-routed DNS, where the answer depends on the resolver's location. Querying from a US east coast resolver and a Tokyo resolver can yield completely different IPs for the same hostname - both legitimate. If you need a full picture, query from multiple regions or use a propagation checker rather than this single-resolver view.
Stale DNS caches are the second classic trap. After a migration, ISPs and OS resolvers can hold the old answer for the duration of the previous TTL. This produces the familiar "it works for me, not for them" pattern. The fix is patience - wait for the old TTL to expire - not aggressive retries. Flushing your own cache (ipconfig /flushdns on Windows, sudo dscacheutil -flushcache on macOS, browser DNS cache reset) only fixes your machine, never anyone else's.
CNAME chains and SaaS aliases add another layer. A custom domain like shop.brand.com often CNAMEs to a SaaS host like brand.myshopify.com, which in turn resolves to Shopify's CDN. Your hostname-to-IP result shows only the final IP - which belongs to Shopify, not to you. If you need to confirm SSL or origin behavior, follow up with a full DNS lookup to see the entire chain.
Finally, IPv6 results frequently mislead users who assume the site is IPv6-broken because no AAAA appears. Many origin servers and CDNs publish IPv4 only deliberately, either because their network does not run dual-stack or because of specific routing decisions. Missing AAAA is not a bug to report - it is a deployment choice. The exception is when a site that previously had AAAA suddenly does not; that points to a real misconfiguration rather than an intentional IPv4-only stance.