What Is SOA Record in DNS: Creation and Configuration

What Is SOA Record in DNS? SOA Records Explained

Final: SOA Records: SOA Records Explained

The SOA (Start of Authority) record is a fundamental component of the Domain Name System (DNS). It helps provide every essential piece of information needed by the domain including its authoritative nameserver, the email address of the administrator responsible for the domain, and other related details.

SOA records also contain several other fields like the serial number, refresh time, retry time, and expiry time that specify important information about the domain. When these fields are specified in the SOA record, DNS administrators can be certain of consistency and proper dissemination of DNS information across the internet.

  • SOA is a component of DNS
  • Discover how to set up SOA record step-by-step
  • Learn to configure SOA record in several steps
  • There are different types of SOA: Minimum TTL, Negative Caching TTL, Zone Transfer ACL, Zone Serial Number Format, etc.
  • There are several tools that can help you identify settings for your DNS configuration such as DNS checkers, DNS monitoring tools, DNS performance setting tools, and DNS propagation checkers
  • Choose a reliable primary DNS server, use a unique email address, and choose appropriate values for the refresh, retry, and expiry times

How to Create and Configure an SOA Record for Your Domain

Final: SOA Records: SOA Records Explained

Whenever you enter a website’s URL in your browser, your computer actually establishes the connection with an IP address. This is due to the Domain Name System (DNS). What happens next is that the domain’s name is resolved into the required number sequence. But for your browser to fetch anything, the name servers must have zone files.

Consequently, these zone files contain numerous DNS records that enable the DNS in the first place. Even though the DNS recognizes more than 100 different types of records, the most well-known, of course, are SOA records. It’s really not hard to know why, you see, the actual name resolution occurs in SOA records. So the big question is how to create and configure an SOA record for your domain. Here are some steps to follow:

Step 1: Determine Your Primary DNS Server

Do you know which DNS server is designated as the primary server for your domain? If you don’t, you have no business creating an SOA record. Anyway, you’re in luck because you can easily get this information from your web hosting provider or domain registrar.

Find The Best Domain Hosting Solutions for Your Site

Best Domain Hosting Choices
User Rating
Money-back Guarantee
45 Days
45 Days
30 Days

Step 2: Choose an Email Address

Now that you have determined your primary DNS server, you can proceed to select a suitable email address for contacting the domain administrator. The email address should follow the format of username@yourdomain.com.

Step 3: Choose the Serial Number

For this step, you can choose any serial number as your initial serial number, just ensure that it is incremented each time you make modifications to your DNS information. When it comes to creating an SOA record,  serial numbers are too important to ignore. It is your serial number that will help you identify changes in DNS information, so you don’t want to go wrong with it.

Step 4: Set the Refresh, Retry, and Expiry Times

We touched a little on this in our introduction, but these fields go deeper than previously explained. The refresh, retry, and expiry times specify the intervals between DNS zone transfers and the duration that secondary servers should wait before retrying failed zone transfers. Make sure appropriate values are determined for these fields based, and by appropriate, I mean based on your specific needs.

Refresh Time

The refresh time field indicates the interval at which secondary DNS servers should check with the primary server for any changes to the domain’s DNS information. It ensures that the secondary servers remain synchronized with the primary server.

Retry Time

The retry time field specifies the interval at which secondary servers should retry contacting the primary server if a previous attempt to synchronize failed.

Expiry Time

The expiry time field defines the maximum time period after which secondary servers should stop considering their cached information as authoritative. Once the expiry time has passed, secondary servers need to fetch updated DNS information from the primary server.

Step 5: Add the SOA Record to Your DNS Zone File

Once you have gathered all the necessary information, add the SOA record to your DNS zone file. This file can be edited using a text editor or a DNS management tool provided by your web hosting provider or domain registrar.In my experience, there is more than one way to add the SOA record to your DNS zone file and the exact steps may vary depending on your DNS management platform or service provider.

Whatever the case, you can always trust the documentation or support resources provided by your DNS service and refer to it for detailed instructions tailored to their system. Here’s more on how to add the SOA record, including necessary subheadings:

Access Your DNS Zone File

  • Log in to your DNS management platform provided by your domain registrar or web hosting provider
  • Locate the option to manage your DNS settings or access your DNS zone file

Open Your DNS Zone File

  • Find the DNS zone file associated with the domain you want to add the SOA record to
  • Open the DNS zone file for editing. This can typically be done within the DNS management platform using a text editor or an interface provided

Locate the Start of Authority (SOA) Section

  • Within the DNS zone file, look for the Start of Authority (SOA) section
  • The SOA section is usually denoted by a line that starts with the domain name followed by the “IN SOA” keyword

Add the SOA Record

In the SOA section, add the SOA record using the following SQL format:

Final: SOA Records: SOA Records Explained

  • Replace “domain.com” with your actual domain name
  • Replace “primary-nameserver” with the hostname or IP address of your primary DNS server
  • Replace “email-address” with the email address of the domain administrator
  • Replace the placeholder values (serial-number, refresh-time, retry-time, expiry-time, minimum-ttl) with the appropriate values specific to your configuration

Save and Verify the Changes

  • Save the DNS zone file after adding the SOA record
  • Close the editor or exit the DNS management interface
  • To ensure that the SOA record has been added correctly, perform a DNS lookup for your domain using tools like nslookup or dig

Step 6: Verify the SOA Record

To ensure that the SOA record has been properly configured, perform a DNS lookup for your domain using tools such as nslookup or dig. Verify that the SOA record is returned with the correct values. But before you go on verifying the SOA record, it’s important to understand why it needs to be verified.

Verification ensures that the SOA record is correctly set up and accessible by DNS servers. It helps confirm that the SOA record contains accurate information about your domain. If you haven’t done this before, here is how to:

Perform a DNS Lookup

  • Use a DNS lookup tool such as nslookup or dig to perform a query for your domain’s SOA record
  • Open a command prompt or terminal window to execute the DNS lookup command

Execute the DNS Lookup Command

Enter the following command, replacing “domain.com” with your actual domain name:

nslookup -type=SOA domain.com


dig domain.com SOA

Review the Results

  • Examine the output of the DNS lookup command to verify the SOA record
  • Look for the section that displays the SOA record information
  • Ensure that the primary nameserver, email address, and other parameters match the values you set in the SOA record

Check for Errors or Mismatches

  • Pay attention to any errors or mismatches in the SOA record information
  • Verify that the nameserver, email address, and other details are accurate and properly configured
  • If there are discrepancies, double-check the configuration of the SOA record in your DNS zone file

Repeat the Verification Process

  • Perform the DNS lookup from multiple locations and DNS servers to ensure consistent results
  • This helps confirm that the SOA record has propagated correctly across different networks
  • If you encounter any issues or discrepancies, review your DNS settings and consult the documentation or support resources provided by your DNS service for further assistance
Domain Hosting Plans with HostArmada
HostArmada offers a wide range of Domain TLDs at affordable prices that come with convenient DNS management and email forwarding. Furthermore, they do offer a FREE domain forever as part of all their quality hosting plans. The Free Domain name offer is applicable to either a domain registration or a transfer of the most commonly used domain extensions. HostArmada is an excellent solution for anyone looking for a reliable domain registrar and the convenience of managing websites and domains from a single place.
Visit HostArmada

Different Types of SOA Records Available and How They Can Benefit You

While there is only one type of SOA record, there are several optional parameters that can be added to enhance its functionality. With these parameters, you can fine-tune your DNS management, optimize caching behavior, control access to zone transfers, ensure compatibility with external systems, and provide more comprehensive information about your domain.

They also offer additional benefits and customization options for your DNS management.

Minimum TTL (Minimum Time to Live)

This parameter specifies the minimum amount of time that a DNS resolver should cache the SOA record before requesting it again. By setting an appropriate minimum TTL value, you can control the caching duration and reduce the load on your DNS servers by minimizing the number of queries.

Negative Caching TTL

This parameter determines how long a DNS resolver should cache a negative response for a query that doesn’t return any results. Setting a reasonable negative caching TTL value can reduce the load on your DNS servers by minimizing queries for non-existent records.

Zone Transfer ACL (Access Control List)

This parameter defines the IP addresses or network ranges that are allowed to perform zone transfers for your domain. By configuring a zone transfer ACL, you can enforce access restrictions and prevent unauthorized parties from accessing your DNS information.

Zone Serial Number Format

This parameter specifies the format of the serial number in the SOA record. It can be useful when integrating your DNS system with other systems that require a specific format for serial numbers. Ensuring compatibility with external systems simplifies the management and synchronization of DNS information.

Other Optional Fields

In addition to the essential fields of the SOA record, there are other optional fields that can be included. These may include the primary nameserver’s IP address, the primary administrator’s name, and a description of the zone. These fields provide additional context and information about your domain’s DNS configuration.

Domain Hosting Plans with FastComet
Keeping your domain name registration and web hosting in one place makes life much easier. FastComet is a world class hosting provider that also offers affordable and reliable domain name hosting too. Buying your domain name through FastComet makes setting up your own website far faster and easier than would otherwise be possible. You simply won’t find a better place to buy a new domain and set up your website.
Visit FastComet

Tips for Setting Up an SOA Record 

If you’re new to DNS management, setting up an SOA (Start of Authority) record for your domain accurately, ensuring the proper functioning of your DNS infrastructure and smooth management of your domain’s DNS information will be like riding a horse for the first time.

Before setting up the SOA record, familiarize yourself with its purpose and the significance of each field. Understanding the role of the SOA record will help you make informed decisions about the values to use in each field. However, with the following tips, you can ensure that your SOA record is set up correctly:

Choose a Reliable Primary DNS Server

The primary nameserver specified in the SOA record should be a reliable and highly available server. This server will handle all DNS queries for your domain, so it’s crucial to ensure its reliability and stability.

Use a Unique Email Address

Specify a unique email address in the SOA record that is specific to your domain and regularly monitored. This email address will be used to contact the domain administrator in case of any DNS-related issues or important notifications.

Use a Sensible Serial Number Format

The serial number in the SOA record should be incremented each time there is a change in DNS information. Choose a format for the serial number that makes it easy to track and understand the sequence of changes.

Choose Appropriate Values for Refresh, Retry, and Expiry Times

Determine the values for the refresh, retry, and expiry times based on the specific needs of your domain. If you anticipate frequent changes to your DNS information, you may want to set a shorter refresh time to ensure the timely propagation of updates.

Ensure the SOA Record Is Propagated to All DNS Servers

After creating the SOA record, verify that it has been propagated to all DNS servers. You can perform a DNS lookup for your domain using tools like nslookup or dig to check if the SOA record is correctly resolved and available across different DNS servers.

Domain Hosting Plans with A2 Hosting
In addition to providing reliable shared, VPS, and dedicated server hosting, A2 Hosting also offers a full domain registration and hosting options so you can keep all your web-related accounts in one place. They have great pricing and easy registration options for virtually every top level domain you can imagine.
Visit A2 Hosting

Tools That Can Help You Identify the Best Settings for Your DNS Configuration

There are several useful tools available that can help you identify the best settings for your DNS configuration. These tools help you gain valuable information about your DNS configuration, identify any issues or improvements needed, and make informed decisions to optimize your DNS setup. Some of these tools include:

DNS Checkers

DNS checkers such as DNScheck or MXToolbox can analyze your DNS configuration and identify any issues or inconsistencies. These tools can check for missing or incorrect SOA records, incorrect nameserver settings, DNSSEC configuration, and more. They provide valuable insights and suggestions for improving your DNS setup.

DNS Monitoring Tools

DNS monitoring tools like Pingdom or Uptime Robot continuously monitor the performance and availability of your DNS servers. They can alert you in real-time if there are any issues with your DNS infrastructure. These tools also provide valuable data on DNS resolution times, helping you identify potential bottlenecks or configuration problems.

DNS Performance Testing Tools

DNS performance testing tools such as DNSPerf or Namebench allow you to test the speed and reliability of different DNS servers. These tools simulate DNS queries from various locations and provide insights into response times and error rates. By using these tools, you can identify the fastest and most reliable DNS servers for your domain.

DNS Propagation Checkers

DNS propagation checkers like WhatsMyDNS or DNS Checker help you verify that your DNS changes have propagated to all DNS servers worldwide. These tools allow you to check the status of your DNS changes across different locations and DNS servers. They help ensure that your changes are propagated correctly and avoid any potential downtime.

Read more about HostArmada

Expert and User Insights by HostArmada Customers
Based on 749 user reviews
  • User Friendly
  • Support
  • Features
  • Reliability
  • Pricing
Visit Site

How Does SOA Records Work in DNS

The DNS (Domain Name System) operates as a decentralized and hierarchical system, where name servers provide information to servers located within specific allocated zones.

To manage and organize these zones, DNS servers utilize zone files, which are simple text files containing all the DNS records for a particular zone. Within these zone files, an essential record called the Start of Authority (SOA) record is included to establish the authority and provide important information about the zone.

The Role of SOA Records

The SOA record serves several crucial purposes, including determining whether the addressed server is responsible for handling a specific request. It becomes particularly significant in server clusters where the workload is distributed among multiple devices.

To be sure that zone files remain up-to-date across all servers, regular zone transfers occur, where “slave” servers (lower-level servers in the hierarchy) synchronize their data with the “master” server. The process and regulation of these zone transfers are defined by the SOA record, which contains various pieces of information.

Structure of an SOA Record

An SOA record consists of several fields that provide relevant details about the zone. These fields include:

Zone Name

This field represents the domain name of the zone in the form of a Fully Qualified Domain Name (FQDN). It follows a hierarchical structure and ends with a period to indicate the root directory.

Network Class

The class field, although historically significant, is often omitted as only the internet class (IN) is used in modern DNS systems.

Record Type

The record type specifies the type of DNS record, which is SOA in this case.

Master Name (MNAME)

Also known as the primary master, this field identifies the server above the slave servers. It determines the name server through which the subordinate servers attempt zone transfers.

Responsible Administrator (RNAME)

The RNAME field contains the email address of the responsible administrator. Notably, the “@” symbol is not allowed in the notation, and a period separates the local part (e.g., username) from the domain. If a period occurs before the “@” symbol in the original email address, it must be denoted with a backslash “\”.

Serial Number

The serial number in the SOA record is incremented with each change made to the zone file. There are two common formats for serial numbers: a simple incremental process or a date format (YYYYMMDDVV). The serial number helps track the version of the zone file and can indicate the number of changes made.

Refresh, Retry, Expire, and Minimum Time Specifications

By now, you should know a little about these time specifications represented in seconds. They control various aspects of zone transfer and data retention. But just as a refresher -pun intended- I will summarize them for you.

  • The Refresh field defines the interval at which a slave server should request the current version of the zone file from the master
  • The Retry field determines when a slave server should attempt a failed zone transfer again
  • The Expire field specifies the maximum time that a slave server can use the zone file without receiving updates from the master
  • The Minimum field corresponds to the time to live (TTL) and determines how long a client can cache the requested information before refreshing

Read more about FastComet

Expert and User Insights by FastComet Customers
Based on 1589 user reviews
  • User Friendly
  • Support
  • Features
  • Reliability
  • Pricing
Visit Site

What Is a Zone Transfer?

A zone transfer is the process of replicating DNS record data from a primary nameserver to one or more secondary nameservers. It allows secondary nameservers to obtain an up-to-date copy of the DNS zone’s records from the primary server. This replication ensures that multiple servers can provide DNS resolution for a particular zone, distributing the workload and improving redundancy.

Process of a Zone Transfer

During a zone transfer, the primary nameserver sends the complete set of DNS records for the zone to the secondary nameserver(s). The process typically begins with the transfer of the Start of Authority (SOA) record, which contains essential information about the zone, including the serial number.

Benefits of Zone Transfers

The serial number in the SOA record serves as an identifier for the version of the zone’s data. When a secondary nameserver initiates a zone transfer, it includes its current serial number in the request.

The primary nameserver compares the requested serial number with its own. If the primary server’s serial number is higher, it indicates that updates have occurred since the last transfer, and a zone transfer is necessary to synchronize the data.

Role of the Serial Number

Zone transfers traditionally occur over the Transmission Control Protocol (TCP) rather than the User Datagram Protocol (UDP), which is typically used for DNS queries. TCP provides reliable data transmission, ensuring that all records are transferred successfully.

Transmission Protocol

By performing zone transfers, secondary nameservers can maintain consistent and accurate copies of the DNS zone’s records, reducing the reliance on a single primary server and enhancing fault tolerance in the event of primary server failures.

Read more about A2 Hosting

Expert and User Insights by A2 Hosting Customers
Based on 1890 user reviews
  • User Friendly
  • Support
  • Features
  • Reliability
  • Pricing
Visit Site

How DNS Works: Unveiling the Magic

DNS (Domain Name System) is like the wizardry that translates complicated IP addresses into simple and memorable domain names. When a curious user wants to visit a website like “example.com,” their trusty web browser or application unleashes a DNS Query. This query is sent to a DNS server, seeking the IP address associated with the desired hostname. And so, the enchantment begins.

Enter the DNS Resolver, a clever component that plays detective. First, DNS checks its local cache to see if it already knows the IP address for the hostname. If it’s lucky, it retrieves the answer and swiftly returns it to the browser or application. But if the IP address is not found in the cache, the resolver embarks on a quest. It contacts a series of DNS Name Servers, hoping to uncover the secret behind the requested service.

Types of DNS Queries Recursive Query

This query type demands an answer, no matter what. The DNS client submits a hostname, and the resolver takes on the challenge. It initiates a recursive query process, starting from the prestigious DNS Root Server. Step by step, it traverses the DNS hierarchy until it finds the Authoritative Name Server that holds the IP address and other enchanting information for the desired hostname. It’s like a treasure hunt for the correct answer.

Iterative Query

In this query, the DNS client asks for the best answer the resolver can provide. If the resolver has the relevant DNS records in its cache, it hands them over without hesitation. But if it’s clueless, it points the client in the right direction. It refers the client to the Root Server or another Authoritative Name Server closest to the required DNS zone. The client, not easily discouraged, repeats the query directly against the referred DNS server. It’s a game of passing the torch, hoping to get closer to the truth.

Non-Recursive Query

Ah, the query type where the resolver already knows the answer. It’s like having insider information. The resolver either retrieves the DNS record from its local cache and instantly returns it, or it directly queries an Authoritative Name Server that possesses the correct IP for the hostname. No need for further rounds of questioning. The answer is delivered promptly to the client, no hassle involved.

Types of DNS Servers

DNS Resolver

Also known as the recursive resolver, it’s the hero responsible for receiving DNS queries from clients. It listens attentively to those human-readable hostnames, like “www.example.com,” and tirelessly tracks down their corresponding IP addresses. A vital role indeed.

DNS Root Server

The root server is where it all begins, the genesis of the hostname-to-IP-address journey. When a DNS query reaches the root server, it extracts the Top Level Domain (TLD) from the user’s query.

Let’s say it’s the grand “www.example.com.” The root server reveals the secrets of the .com TLD Name Server, guiding the way to further discoveries within the .com DNS zone. There are 13 mystical root servers scattered worldwide, each marked with a letter from A to M, overseen by organizations like the Internet Systems Consortium, Verisign, ICANN, and others.

Authoritative DNS Server

And finally, we reach the pinnacle of the DNS hierarchy—the Authoritative Name Server. These majestic servers hold the title of being authoritative for specific hostnames. They possess the latest and most accurate information for those beloved domain names. When the DNS resolver reaches this final destination, the Authoritative Name Server reveals the true IP address, granting


SOA records play a vital role in DNS by providing essential information about zone authority and facilitating efficient zone transfers within server clusters. By understanding the structure and significance of SOA records, administrators can effectively manage DNS infrastructure and ensure the smooth functioning of domain resolution and information delivery.

Next Steps: What now?

Further Reading

Frequently Asked Questions

What is the purpose of an SOA record?

The purpose of an SOA record is to provide authoritative information about a domain, such as its primary nameserver and the time-to-live (TTL) values for DNS records. It serves as a fundamental component of the DNS system and helps ensure the proper functioning and reliability of domain name resolution.

How do I create and configure an SOA record for my domain?

You can create and configure an SOA record for your domain using a DNS management tool provided by your domain registrar or hosting provider. Typically, you will need to access the DNS settings or zone file editor for your domain and locate the section related to SOA records.

Within this section, you will specify the primary nameserver (NS record), email address of the domain administrator, serial number, and various timing parameters like refresh, retry, and expiry times.

What are the different types of SOA records available?

There is typically only one type of SOA record, which is the Start of Authority record. However, there are variations in how it can be configured based on different roles within the DNS system. These variations include primary, secondary, stub, and hidden master SOA records. Each type has specific configuration options and benefits depending on the role it plays in the DNS infrastructure.

What is a zone serial number?

A zone serial number is like a fancy version number for the SOA record. A ‘zone’ is like your own little kingdom where you can control everything. You can have a zone with just one domain name, or if you’re feeling adventurous, throw in a whole bunch of domain names and subdomains.

In case you missed it, the serial number is conveniently listed next to ‘SERIAL,’ alongside the Start of Authority record that holds all the important info about the zone. But hey, don’t confuse a ‘zone’ with a ‘domain’ because they’re not always the same.

HostAdvice Speaks to ScalaHosting: An Interview with Chris Rusev

HostAdvice had the opportunity to speak with Chris Rusev, the CEO and co-founder of , a web hosting company that offers shared, cloud VPS, and res...
8 min read
Eddie Segal
Eddie Segal
Digital Marketing Specialist

Email Deliverability: What Is It, Key Factors & Best Practices

What is Email Deliverability? Think of it like mailing a letter and making sure it lands right in the recipient's hands, not lost or thrown...
17 min read
Ela Gal-Kfir
Ela Gal-Kfir
Digital Marketing Specialist

Email Marketing vs. Social Media: Which is More Effective?

What is Email Marketing? Email marketing is a  that involves companies reaching out to potential and existing customers via email ...
10 min read
Ela Gal-Kfir
Ela Gal-Kfir
Digital Marketing Specialist

Email Engagement Metrics, Calculation & Best Practices

Email engagement tells us how interested recipients are in the content of emails they receive. It provides insights into what types of em...
12 min read
Ela Gal-Kfir
Ela Gal-Kfir
Digital Marketing Specialist
HostAdvice.com provides professional web hosting reviews fully independent of any other entity. Our reviews are unbiased, honest, and apply the same evaluation standards to all those reviewed. While monetary compensation is received from a few of the companies listed on this site, compensation of services and products have no influence on the direction or conclusions of our reviews. Nor does the compensation influence our rankings for certain host companies. This compensation covers account purchasing costs, testing costs and royalties paid to reviewers.
Click to go to the top of the page
Go To Top