SPF DKIM DMARC

Email DNS test

Validate email DNS posture: SPF, DKIM selectors, and DMARC alignment. Designed for quick troubleshooting when mail deliverability drops or spoofing protection is being added.

Mail routing
MX sanity checks + common mistakes
TXT records
SPF/DKIM/DMARC parsing and hints
Anti-spoofing
Alignment cues and safe rollout steps

Test a domain

Enter the root domain used for outbound email. Optionally provide a DKIM selector if you know it.

If your provider publishes multiple selectors, run the check per selector.
Results appear below after each test.

Results

Live SPF, DKIM, and DMARC findings.

Run a test to see live email DNS results here.

Safe rollout

A pragmatic way to tighten anti-spoofing without breaking mail.

Start with reports
DMARC p=none collects data so you can see all senders that use your domain.
Align senders
Ensure every legitimate sender is covered by SPF/DKIM and passing alignment.
Tighten gradually
Move to quarantine then reject once you’re confident.

FAQ

Quick answers to common questions.

Why does DKIM fail even with a record?
Common causes include wrong selector, key rotation, or the signing domain not matching the visible From domain (alignment).
Should SPF be ~all or -all?
If you know all legitimate senders, -all is stricter. Use ~all while transitioning or auditing senders.

Fix it with step-by-step guides

Found an issue with this tool? These Tips & Tricks walk through the fix on Windows, macOS, and Linux.

Linux 14 min
Postfix relay basics
Practical Linux guide: postfix relay basics without the usual guesswork.
Read guide
Linux 10 min
Bind9 local DNS server intro
Practical Linux guide: bind9 local DNS server intro without the usual guesswork.
Read guide
Windows 8 min
Change DNS server on Windows (Cloudflare, Google, Quad9)
Point Windows at fast, privacy-conscious DNS resolvers and confirm the change actually took effect.
Read guide
macOS 8 min
Change DNS servers on macOS
Point your Mac at reliable DNS and confirm the change stuck.
Read guide

Browse full topic libraries:

Windows · Networking macOS · Networking Linux · Networking Windows · Security macOS · Security Linux · Security

Tips & Tricks hub

Tools

Want deliverability you can rely on?

We can implement SPF/DKIM/DMARC correctly and monitor changes so mail stays consistent over time.

Start a conversation All tools
Measured rollout. Verified alignment. Clear reporting.
SPF DKIM DMARC