Your DNS is the foundation of both email security and domain trust. We check SPF, DKIM, DMARC, DNSSEC, CAA and MTA-STS β and show exactly what's missing.
Run a free scan Order report βA complete check of your domain's DNS and email security. We verify that your email can't be forged (SPF/DKIM/DMARC), that DNS is integrity-protected (DNSSEC), that only the right issuers can issue certificates (CAA) and that email is delivered encrypted (MTA-STS).
-all), under 10 lookups?none/quarantine/reject) and alignmentWe only read public DNS records β nothing leaves your environment.
All records verified against best practice and standards.
Exactly which DNS records you need to add or change.
Do I need all of these?
SPF/DKIM/DMARC are fundamental for anyone sending email. DNSSEC, CAA and MTA-STS raise protection further and are increasingly required in technical audits.
Can wrong DNS break my email?
Yes β an incorrect SPF or too-strict DMARC can block legitimate email. We flag such risks before they become problems.
Is this the same as the DMARC check?
The DMARC check focuses on spoofing protection; this covers the full DNS/email security including DNSSEC, CAA and MTA-STS.