MyIPScan

Email Security Tool

DMARC Checker

Look up a domain's DMARC TXT policy and review policy, reporting, and alignment signals. This is a DNS policy check, not a complete email security audit.

Direct answer

DMARC Checker: answer first

Check a domain DMARC record and review p, rua, ruf, and alignment tags. Use the result as an observable public-signal check with stated limitations, not as an absolute guarantee.

Last updated

Check DMARC

Enter a domain to check DMARC.
Technical response details (optional)

What the results mean

DMARC records live at _dmarc.example.com. The p tag can be none, quarantine, or reject. Reporting tags such as rua help domain owners monitor results.

How to use this tool

  1. Enter the domain you want to check.
  2. Review the policy and reporting fields.
  3. Compare with SPF and MX records for broader email context.

FAQ

Where is the DMARC record stored?

It is a TXT record under _dmarc for the domain.

Should every domain use p=reject?

Not immediately. Many domains start with monitoring and move carefully after reviewing legitimate mail sources.

Does this check DKIM selectors?

No. DKIM selectors vary by sender. Use DNS Lookup if you know the selector name.

B2B diagnostic report model

Email domain diagnostics

Email checks connect MX, SPF, DMARC, optional DKIM selector records, PTR/rDNS, sender-IP context, blacklist context, and email-header evidence.

SummaryStart with a plain-language status for the public target.
Top issuesPrioritize the few findings that need attention first.
What passedShow expected public signals without turning them into a certification.
What needs reviewSeparate limited, unavailable, and review-worthy signals.
Why it mattersExplain the business, delivery, crawl, or implementation impact.
Recommended fixesPoint to the DNS, hosting, email, CMS, or SEO owner who can act.
What this tool cannot checkThis does not send mail, inspect private mailboxes, guarantee inbox placement, or certify sender reputation everywhere.
Client-safe copyClient-safe copy should keep authentication findings and fixes while removing email local-parts, raw TXT payloads, raw sender IP details, and private mailbox context.
Monitoring beta (optional)Optional monitoring beta can compare MX, SPF, DKIM selector checks, DMARC policy, PTR/rDNS, and selected blacklist signals for approved domains.

Client-safe report

Share findings without leaking raw technical material

Use Safe Copy or this page's summary when sending results to a client, vendor, developer, or support team. Raw headers, credentials, tokens, cookies, private addresses, email local-parts, and oversized payloads should stay out of client-facing copy.

Check my email domain

What this checks

Public mail-domain records and pasted email-header signals such as MX, SPF, DMARC, DKIM selector context, and sender-route clues.

Limits

What this cannot check

It cannot guarantee inbox placement, inspect private mailboxes, or certify sender reputation everywhere.

Read results

How to use the output

Treat results as review signals for this browser/session or public target. Re-test after one change, then use Safe Copy or notes that avoid raw identifiers.

SEO and AI citation summary

DMARC Checker: what this tool does

Looks up _dmarc TXT records and explains policy, reporting, and alignment tags.

How to use

  1. Enter one public domain, email domain, optional selector, or pasted header depending on the tool.
  2. Review authentication, policy strength, routing, and monitoring signals together.
  3. Apply one DNS or mail-provider change, then retest after propagation.

What the result means

Treat MX, SPF, DKIM, DMARC, MTA-STS, TLS-RPT, PTR, and header findings as email trust signals. They do not guarantee inbox placement or prove sender identity alone.

Limitations

  • This tool reports observable signals only; it is not a guarantee or certification.
  • Uses /api/dns-lookup against _dmarc domain TXT records.
  • Results can change after VPN reconnects, DNS propagation, browser updates, cache changes, or provider configuration changes.

FAQ

Does p=reject guarantee safe email?

No. DMARC policy helps receivers evaluate mail, but it is not a complete deliverability or anti-abuse audit.

What does DMARC Checker do?

DMARC Checker looks up _dmarc TXT records and explains policy, reporting, and alignment tags. Results are review signals with stated limits.

How should I use DMARC Checker results?

Use the result to decide what to review next, make one change at a time, and retest in the same browser, network, domain, or provider context when possible.

What does DMARC Checker not prove?

It does not prove anonymity, full security, complete deliverability, full reputation cleanliness, search ranking, or AI citation. It only reports the visible signals available to this tool.