SSL Checker DMARC Meta Tags Site Speed Broken Links AI Chat Bookings Try ModusOp

How DMARC Dashboard Works

Our free tool analyses any domain's email authentication records in seconds. Here's exactly what happens when you run a check.

1

Enter your domain name

Type or paste any domain name into the checker. You can enter a full URL with https:// or just a bare domain like example.com.au — we'll strip the extras and work with the root domain. The tool works with any domain, whether it's hosted in Australia or anywhere in the world.

2

We query DNS for DMARC, SPF, and DKIM records

Our tool queries the domain's DNS records in real time. We look up the _dmarc TXT record for your DMARC policy, the root domain's TXT records for SPF, common DKIM selectors under _domainkey, and MX records to confirm the domain handles email. All lookups happen server-side, so there's nothing to install.

3

Parse and validate against RFC specifications

Each record is parsed tag by tag and validated against the relevant RFC specifications. For DMARC, we check the policy (p=), subdomain policy (sp=), alignment modes, and reporting addresses. For SPF, we evaluate mechanisms, includes, and the all qualifier. For DKIM, we verify key presence across common selectors.

4

Get a clear breakdown with recommendations

You'll receive an overall email authentication grade from A to F, along with a detailed breakdown of every record we found. Where we identify issues — like a missing DMARC record or a weak SPF policy — we provide specific, actionable recommendations to strengthen your email security.

What Gets Checked

DMARC Dashboard evaluates three key areas of your domain's email authentication configuration. Here's what we analyse in each category.

DMARC Record

DMARC (Domain-based Message Authentication, Reporting and Conformance) is the cornerstone of email authentication. We check your policy (none, quarantine, or reject), reporting addresses (rua for aggregate reports, ruf for forensic reports), DKIM alignment mode (strict or relaxed), SPF alignment mode, subdomain policy, and the percentage of messages the policy applies to. A strong DMARC record tells receiving servers exactly what to do with emails that fail authentication.

SPF Record

SPF (Sender Policy Framework) defines which mail servers are authorised to send email on behalf of your domain. We analyse the mechanisms in your SPF record (ip4, ip6, a, mx), the include directives that reference third-party senders like Google Workspace or Microsoft 365, and critically, the all qualifier that determines what happens to unauthorised senders. We also flag if you're approaching the 10 DNS lookup limit — exceeding this limit causes your entire SPF record to fail.

DKIM Record

DKIM (DomainKeys Identified Mail) uses cryptographic signatures to verify that an email hasn't been tampered with in transit. We probe common DKIM selectors — including google, default, selector1, selector2, and others used by popular email providers — to check for the presence of DKIM public keys. We verify both TXT records and CNAME records, as many hosted email services use CNAME-based DKIM delegation.

Ready to check your email authentication?

Enter any domain and get a complete DMARC, SPF, and DKIM analysis with actionable recommendations — completely free.

Check Your Domain →