Skip to main content

DMARC Domain Checker

Domain Health Checker

Use our DMARC Domain Checker to find out if an email domain is protected against phishing, spoofing or fraud. Our domain checker offers you quick insights by inspecting DMARC, SPF and DKIM records and shows you if there are any actions you need to take.

NOTE: The Yahoo and Google DMARC requirement came into force February 1, 2024. We’ve written a guide to help you with the new sender requirements and to ensure your emails won’t be disrupted.

Just enter the domain (e.g., example.com) you’d like to check in the bar below.

Our tools are under maintenance. Please try again later.

Warning

Error

Access/bookmark this inspection at

Did you mean

?

Details

Well done! You have a valid DMARC record that provides visibility into the entirety of your email program(s) and helps ensure you meet email sending best practices. Your domain takes full advantage of the domain protections afforded by DMARC.

The checks performed here are similar to those done by mailbox providers such as Google, Yahoo and Microsoft. DMARC, SPF and DKIM records live in your domain's DNS and are used by mailbox providers to separate legitimate email from abuse. Based on your strict DMARC policy, mailbox receivers can reliably identify and block phishing, spoofing and unauthorized use of your domain.

You have a valid DMARC record that provides visibility into the entirety of your email program(s) and helps ensure you meet email sending best practices.Your domain however is not fully protected against abuse as it does not take full advantage of the protections afforded by DMARC.

The checks performed here are similar to those done by mailbox providers such as Google, Yahoo and Microsoft. DMARC, SPF and DKIM records live in your domain's DNS and are used by mailbox providers to separate legitimate email from abuse. Based on your DMARC policy, receivers are currently not able to block fraudulent emails that mimic your domain.

We were unable to find a DMARC record. As a result, this domain is not protected against abuse and likely does not meet the new Google and Yahoo sender requirements.

The checks performed here are similar to those done by mailbox providers such as Google, Yahoo and Microsoft. DMARC, SPF and DKIM records live in your domain's DNS and are used by mailbox providers to separate legitimate email from abuse. Based on your DMARC policy, receivers are currently not able to block fraudulent emails that mimic your domain.

Get started

Your domain has a valid DMARC record and your DMARC policy will prevent abuse of your domain by phishers and spammers.

Your domain has a valid DMARC record and it is set to p=quarantine. To fully take advantage of DMARC, the policy should be set to p=reject.

Your domain has a valid DMARC record but the DMARC policy does not prevent abuse of your domain by phishers and spammers.

Because this subdomain does not have its own DMARC record, it inherits the policy established at the parent domain level (p=reject). Inheritance is an important feature of DMARC because it helps you discover and protect all of your subdomains with a single DNS record.

Because this subdomain does not have its own DMARC record, it inherits the policy established at the parent domain level (p=quarantine). Inheritance is an important feature of DMARC because it helps you discover and protect all of your subdomains with a single DNS record.

Because this subdomain does not have its own DMARC record, it inherits the policy established at the parent domain level (p=none). Inheritance is an important feature of DMARC because it helps you discover and protect all of your subdomains with a single DNS record.

Your DMARC record seems to have some errors. Your next step should be to solve this issue. This is most often a typo or syntax error with the DMARC record in your domain’s DNS. This is almost always a TXT record at location/target _dmarc. (example: _dmarc.example.com). You can use our DMARC Record Wizard to help you rebuild it correctly.

Your domain does not have a DMARC record. Your domain is at risk to being abused by phishers and spammers.

To understand and fix the specific errors, use our DMARC Inspector.

Great job! You have a valid SPF record, which specifies a hard fail (-all).

Great job! You have a valid SPF record, which specifies a soft fail (~all).

Your domain has a valid SPF record but is authorizing too much of the Internet due to a badly applied "all" mechanism.

Your SPF record seems to have some errors. Your next step should be to resolve this issue.

We were unable to find an SPF record for this domain. Learn about creating an SPF record.

To understand and fix the specific errors, use our SPF Surveyor.

We couldn't find any DKIM records often associated with popular email sending sources. If you know the specific selector,
you can do a targeted search.

We found at least one DKIM valid record. It’s likely that you have others as each email sending source should have its own DKIM keys. DMARC visibility can help you discover each of your DKIM keys and much more.

We found an error with at least one of your DKIM records. DMARC visibility can help you with these details and much more.

We found an error with at least one of your DKIM records. DMARC visibility can help you with these details and much more.

For more information about your DKIM record we recommend our DKIM Inspector.

Enter domain

invalid domain

Check domain

Enter selector

invalid selector

Inspect DKIM

Get your domains into compliance.
Try out dmarcian for free!