MyIPScan
Email authentication estimate

Email Deliverability Doctor

Check the public DNS and optional sender-IP signals that commonly affect email authentication: MX, SPF, DMARC, DKIM selector records, MTA-STS, TLS-RPT, PTR, and selected blacklist context.

This tool does not send test email, log into mailboxes, inspect content, or promise inbox placement. It shows what is visible and what to fix next.

Check email domain Open Public Exposure Report
Result first Safe Copy after scan Advanced details below
Safe Copy avoids raw email diagnostics. It keeps the domain-level result and fixes while masking IP values, removing raw DNS payloads, and confirming email local-parts are not copied. See what the receipt removes.

Before interpreting resultsEmail report limits
Authentication first, claims second.

SPF, DKIM, DMARC, MX, PTR, MTA-STS, and TLS-RPT are checked as public signals. Real pass/fail still depends on actual messages and receivers.

No inbox placement guarantee.

The result is an Email Exposure Estimate, not a deliverability score, spam score, reputation guarantee, or provider compliance certification.

Diagnosis first

Email Exposure Estimate

Safe report available after scan.

Preparing your report...

Use Safe Copy from this result before sharing. The copied report keeps authentication findings and next steps without exposing raw sender-IP context or private email local-parts.
Copy safely Safe Copy

Top issues

What needs attention

Maximum five issues are shown here.

Next steps

Recommended Fixes

Prioritized for DNS and mail-provider work.

Technical details

Checks

Collapsed by default.

Share safely

Copy Actions

Use Safe Copy before sharing results.

Safe Copy keeps the domain-level result, removes raw sensitive fields, masks IP values, and confirms that email local-parts are not stored or copied.

Limits

What this tool does not do

Clear limits keep the result useful.

No test email

The scanner does not send mail, open relays, log into accounts, or inspect message bodies.

No DMARC alignment claim

Alignment can only be judged from real message headers and Authentication-Results.

No DKIM missing claim without selector

DKIM selectors are provider-specific, so the scan checks only selectors you provide.

No universal reputation guarantee

Selected blacklist signals are limited and cannot replace provider postmaster tools.

Monitoring coming next

Email authentication change alerts are planned

Monitoring will compare MX, SPF, DKIM selector checks, DMARC policy, MTA-STS, TLS-RPT, PTR/FCrDNS, and selected blacklist signals. Alerts are planned, but they are not live yet.

  • DMARC policy weakened
  • SPF invalid or risky
  • MX/PTR provider changes
  • Blacklist signal appeared or resolved
Run full report

Focused tools

Use these when one signal needs deeper detail.