ToolHop.

ADVERT

πŸ›‘οΈ IPSECKEY Record Checker

Check IPSECKEY records that distribute public keys for IPsec security associations and VPN discovery.

IPSECKEY Record Checker

Inspect IPsec public keys advertised in DNS to streamline VPN peer discovery and validation.

What you'll see

  • Gateway type, precedence, and algorithm values for each IPSECKEY entry.
  • Base64-encoded public keys that devices use to establish secure tunnels.
  • TTL information indicating how quickly new keys will propagate to clients.

Common use cases

  • Audit opportunistic IPsec deployments that rely on DNS for key distribution.
  • Verify that rotated VPN keys are published before pushing new configurations to endpoints.
  • Document gateway assignments when multiple tunnels share the same hostname.

DNS Resolver

Check IPSECKEY records that hold public keys for IPsec security associations and VPN discovery.

Prepared query: example.com

Troubleshooting tips

  • Ensure gateway hostnames also resolve to valid A or AAAA records so peers can reach them.
  • Use unique precedence values when publishing multiple keys to control which one clients prefer.
  • Refresh keys regularlyβ€”shorter TTLs help you roll credentials quickly if a compromise occurs.

FAQ

Which algorithms are supported?
Most resolvers expect RSA or elliptic-curve keys. The algorithm field reveals whether you're publishing a compatible option for your devices.
Do I still need certificates?
IPSECKEY records supplement, but do not replace, certificate-based authentication. Use them to automate discovery while keeping device policies enforced.

ADVERT

More like this

πŸ›°οΈDNS Record Lookup

Look up DNS A, AAAA, MX, TXT, CNAME, NS, and DNSSEC records instantly using Google's public resolver.

πŸ“‘A Record Checker

Fetch IPv4 A records for any domain to verify hosting changes and troubleshoot DNS issues.

πŸ›°οΈAAAA Record Checker

Check AAAA records to confirm IPv6 addresses published for your domain and diagnose dual-stack issues.

πŸ“¬MX Record Checker

List MX records to see which mail exchangers handle email for a domain and validate deliverability setups.

πŸ“TXT Record Checker

Inspect TXT records for SPF, DKIM, DMARC, and verification tokens published on any domain.

πŸ”CNAME Record Checker

Reveal CNAME aliases to see how hostnames map to canonical domains, CDNs, and services.

🧭NS Record Checker

List the authoritative name servers responsible for a domain's DNS zone and confirm delegation.

πŸ“„SOA Record Checker

Fetch SOA records to review the primary name server, contact, serial, and timing values for a zone.

ADVERT