Free DNS Security Checker

    Free unlimited tool to verify domain email security configurations (SPF, DMARC). Supports both single domain checks and bulk processing.

    Single Domain DNS Security Check

    Check a domain's email security configuration (SPF, DKIM, DMARC)

    Bulk DNS Security Check

    Check multiple domains from a CSV or Excel file

    Supported formats: CSV, Excel (.xlsx, .xls)

    Email Security Ratings

    Our DNS security checks assess domain email security posture

    Fully Secured & Enforced

    Highly Deliverable & Secure. Has SPF and DMARC with p=reject policy. This indicates a legitimate domain that actively sends emails and takes security seriously.

    Authenticated with Quarantine

    Deliverable but May Go to Spam. Has SPF and DMARC with p=quarantine policy. Offers good protection but may quarantine suspicious emails.

    Authenticated but Unprotected

    Likely Deliverable. Has SPF and DMARC with p=none policy. The domain sends emails but only monitors authentication failures.

    SPF Only, No DMARC Protection

    Likely Deliverable. Has SPF but is missing DMARC records. Basic sender authentication without failure handling instructions.

    DMARC Without SPF, Strict Rejection

    Likely Rejected. Missing SPF but has DMARC with p=reject policy. This unusual configuration may lead to email delivery problems.

    DMARC Without SPF, Possible Spam

    May Go to Spam. Missing SPF but has DMARC with p=quarantine policy. Unusual configuration that may impact deliverability.

    DMARC Set, No Authentication

    Highly Spoofable. Missing SPF but has DMARC with p=none policy. Provides minimal protection against email spoofing.

    No Authentication

    High Risk, May Be Spoofed. No SPF or DMARC records found. Likely a temporary/fake email provider, or a domain that doesn't send email.

    What is DNS Security?

    Understanding email security records and their importance

    SPF (Sender Policy Framework)

    SPF allows domain owners to specify which mail servers are authorized to send email on behalf of their domain. This helps prevent email spoofing where attackers send messages that appear to come from your domain.

    DMARC (Domain-based Message Authentication, Reporting & Conformance)

    DMARC builds upon SPF by telling receiving mail servers what to do when an email fails authentication. It provides clear instructions on how to handle suspicious emails (monitor, quarantine, or reject) and can send reports about email authentication failures.

    Why DNS Security Matters

    Properly configured email security records (SPF and DMARC) help:

    • Prevent email spoofing and phishing attacks
    • Improve email deliverability by establishing sender reputation
    • Reduce the chance of legitimate emails being marked as spam
    • Protect your brand by preventing unauthorized use of your domain
    • Provide visibility into who is sending email on behalf of your domain