Validate your Sender Policy Framework record
DNS & Records
DNS Lookup Every DNS record for any domain A Record Lookup IPv4 addresses for a domain AAAA Record Lookup IPv6 addresses for a domain MX Lookup Mail servers for a domain NS Lookup Authoritative name servers TXT Lookup TXT records, SPF, verification CNAME Lookup Canonical name (alias) records SOA Lookup Start of Authority record SRV Lookup Service location records CAA Lookup Which CAs may issue certificates Reverse DNS (PTR) IP address to hostname DNSSEC Check Is the domain signed and validated?Email Deliverability
SPF Check Validate your Sender Policy Framework record DMARC Check Inspect and grade your DMARC policy DKIM Check Find and validate your DKIM public key Blacklist Check Check an IP against email blocklists (DNSBLs) SMTP Test Connect to a mail server and check STARTTLS MTA-STS Check Enforced TLS policy for inbound mail BIMI Check Brand logo record for email TLS-RPT Check SMTP TLS reporting policyNetwork & Web
SSL Certificate Check Inspect a site's TLS certificate and expiry HTTP Header Check Inspect response headers, redirects and security Ping (TCP) Reachability and latency over TCP Port Check Which common ports are openDomain
WHOIS Lookup Registration data for domains, IPs and ASNsSPF (Sender Policy Framework) tells receiving mail servers which hosts may send email for your domain. A broken SPF record — duplicated, too many DNS lookups, or missing an "all" mechanism — causes legitimate mail to land in spam. IPeek finds your SPF record, parses every mechanism and flags the issues that hurt deliverability.
An SPF record is a TXT DNS record beginning with "v=spf1" that lists the servers authorized to send email on behalf of your domain.
SPF allows at most 10 DNS-querying mechanisms. Exceeding it causes a "permerror" and receivers may reject or ignore your SPF.
"-all" (hard fail) is strictest; "~all" (soft fail) is common during rollout. Avoid "+all", which authorizes everyone.