Domain Health Checker
Instantly check your domain's email authentication setup. Analyze SPF, DKIM, DMARC, and MX records to ensure your emails reach the inbox.
SPF Record
Sender Policy Framework (SPF) specifies which mail servers are authorized to send email for your domain.
DKIM Record
DomainKeys Identified Mail (DKIM) adds a cryptographic signature to verify email authenticity and integrity.
DMARC Record
DMARC defines how receiving servers should handle emails that fail SPF or DKIM authentication checks.
MX Records
Mail Exchange (MX) records specify which mail servers should receive email for your domain.
How It Works
Enter Domain
Type your domain name (e.g., example.com)
DNS Lookup
We query your DNS records
Analysis
Records are validated against best practices
Get Results
See your score and recommendations
Why Email Authentication Matters
Email authentication is your first line of defense against phishing and spoofing attacks. When properly configured, SPF, DKIM, and DMARC work together to verify that emails claiming to be from your domain are actually authorized. Without these records, your emails are more likely to land in spam or be rejected entirely.
Common Issues We Detect
- Missing records - SPF, DKIM, or DMARC not configured
- Incorrect syntax - Malformed record values that won't validate
- Weak policies - DMARC set to "none" provides no protection
- Multiple SPF records - Only one SPF record is allowed per domain
- Too many DNS lookups - SPF has a limit of 10 DNS lookups
Recommended DMARC Policy Progression
- p=none - Monitor only, collect reports
- p=quarantine - Send suspicious emails to spam
- p=reject - Block unauthenticated emails completely