DNAME : delegation name (RFC 2672)
DNAME will delegate an entire portion of the DNS tree under a new name. In contrast, the CNAME record creates an alias of a single name. Like the CNAME record, the DNS lookup will continue by retrying the lookup with the new name.

TXT : Text record (RFC 1035)
Originally for arbitrary human-readable text in a DNS record. Since the early 1990s, however, this record more often carries machine-readable data, such as specified by RFC 1464, opportunistic encryption, Sender Policy Framework, DomainKeys, DNS-SD, etc.

CERT : Certificate record (RFC 4398)
Stores PKIX, SPKI, PGP, etc.

* : All cached records (RFC 1035)
Returns all records of all types known to the name server. If the name server does not have any information on the name, the request will be forwarded on. The records returned may not be complete. For example, if there is both an A and an MX for a name, but the name server has only the A record cached, only the A record will be returned.

AXFR : Full Zone Transfer (RFC 1035)
Transfer entire zone file from the master name server to secondary name servers.

NS : name server record (RFC 1035)
Delegates a DNS zone to use the given authoritative name servers

DNSKEY : DNS Key record (RFC 4034)
The key record used in DNSSEC. Uses the same format as the KEY record.

NSEC3 : NSEC record version 3 (RFC 5155)
An extension to DNSSEC that allows proof of nonexistence for a name without permitting zonewalking

NAPTR : Naming Authority Pointer (RFC 3403)
Allows regular expression based rewriting of domain names which can then be used as URIs, further domain names to lookups, etc.

DS : Delegation signer (RFC 4034)
The record used to identify the DNSSEC signing key of a delegated zone

NSEC : Next-Secure record (RFC 4034)
Part of DNSSEC—used to prove a name does not exist. Uses the same format as the (obsolete) NXT record.

MX : mail exchange record (RFC 1035)
Maps a domain name to a list of mail exchange servers for that domain

TSIG : Transaction Signature (RFC 2845)
Record that supports one set of security mechanisms for DNS. Used to secure communication between DNS resolvers and Name servers, in contrast to DNSSEC, which secures the actual DNS records from the authoritative name server.

SIG : Signature (RFC 2535)
Signature record used in SIG(0) (RFC 2931). Until RFC 3755 was published, the SIG record was part of DNSSEC; now RRSIG is used for that.

DHCID : DHCP identifier (RFC 4701)
Used in conjunction with the FQDN option to DHCP

IXFR : Incremental Zone Transfer (RFC 1995)
Requests a zone transfer of the given zone but only differences from a previous serial number. This request may be ignored and a full (AXFR) sent in response if the authoritative server is unable to fulfill the request due to configuration or lack of required deltas.

IPSECKEY : IPSEC Key (RFC 4025)
Key record that can be used with IPSEC

DLV : DNSSEC Lookaside Validation record (RFC 4431)
For publishing DNSSEC trust anchors outside of the DNS delegation chain. Uses the same format as the DS record. RFC 5074 describes a way of using these records.