How does the domain name system know the authoritative nameserver for my domain name?

Question

Note: Someone linked to Why does DNS work the way it does? as a possible duplicate. But this link does not answer my question. Specifically, this link does not describe where exactly a regular domain name buyer like me (who has no DNS administration experience) sets the authoritative nameserver. All an inexperienced domain buyer like me does is set edit the DNS field for my domain in a reseller website like Godaddy or Namecheap and set it to customer nameservers like ns1.digitalocean.com, ns2.digitalocean.com, etc. The visible output I see after doing this is these nameservers appearing in the whois <mydomain> output. Is this equivalent to setting the authoritative nameserver as well, or is there something more to it?

Say I register a domain named example.com using any popular domain name registration service/reseller.

Say I have two Linux VMs hosted on two different cloud service provider's infrastructure.

Say I create DNS entries for example.com using the DNS Manager of both cloud service providers. On the first cloud, I point example.com to the IP address of the VM on the first cloud. On the second cloud, I point example.com to the IP address of the VM on the second cloud.

When an Internet user performs nslookup or dig on example.com which IP address would example.com resolve to for it?

As per HBruijn's comment below, it would resolve to the IP address in the record of the authoritative nameserver. So my question is where in this whole process of registering a domain name by an inexperienced user like me on a popular domain name reseller service do we specify the authoritative nameserver?

Is it the DNS field that resellers like Godaddy or Namecheap ask us to enter? I thought that DNS field only appears in the whois output. Does the reseller go and update the DNS too with the same nameservers as the authoritative nameservers?

Answer 1

The questions you're asking are clearly defined in the RFC specs, wikipedia articles, etc. As mentioned, please do your research before posting.

When you change the nameserver or ns value of a domain, you are telling the registrar who you want to be considered authoritative over that domain name. As mentioned, just because you added an ns record to the registrar, doesn't mean that the indicated server is going to respond to requests for that domain; that server must also be configured to assume authorization over the domain (SOA records). As DNS information propagate through the DNS infrastructure, this value eventually gets set across all the DNS servers to allow proper forwarding when the domain is being queried.

When you set the ns values to ns1.digitalocean.com and ns2.digitalocean.com you have indicated that this the server that is authoritative for your domain, so now only records you create within DO are going to be used.

whois has nothing to do with this process, what you need is to use dig to query the DNS infrastructure.