Make Sense of Your DNS

Domain Email Auth Checker

Check visible email authentication signals: MX, SPF, DKIM, DMARC, and what still needs a real sent email header.

This checker summarizes public DNS evidence. It does not inspect email headers, send email, access mailboxes, store submitted domains, or connect to any provider account.

Run a Check

Check a domain

Use one domain or subdomain, such as example.com. Submitted domains are used only for this lookup response. This review applies only to the exact domain or subdomain entered. Some organizations use separate subdomains for marketing or transactional sending.

Advanced DKIM selector

The checker also tries common selectors such as selector1, selector2, google, k1, s1, default, mail, mandrill, kl, and sendgrid.

Ready to check public DNS evidence.

Advanced: Analyze email headers

Paste full message headers from a received email to compare public DNS evidence with what actually happened when the message was delivered.

Headers are parsed in your browser only. They are not submitted, stored, or logged.

You can paste the full message source. The checker will read the header section before the email body.

Header analysis runs locally in this browser.