SPF Record Checker

Instantly validate your domain's SPF record. Detect misconfigurations, dangling includes, and spoofing vulnerabilities — all in real time, zero data stored.

How to Use the SPF Record Checker

  1. Enter your domain name (e.g. example.com) in the scanner.

  2. Click the SPF tab in the Email Trust Console.

  3. Review the parsed SPF record, policy analysis, and any warnings.

  4. Copy the suggested fix if any issues are found.

SPF Record Checker — Frequently Asked Questions

What is an SPF record?
SPF (Sender Policy Framework) is a DNS TXT record that lists which mail servers are authorized to send email on behalf of your domain. It helps prevent email spoofing.
Why is SPF important?
Without SPF, anyone can send email claiming to be from your domain. SPF allows receiving mail servers to verify that incoming mail from your domain comes from an authorized server.
What does 'SPF record not found' mean?
It means your domain has no SPF record. This leaves your domain vulnerable to email spoofing and may cause your legitimate emails to be marked as spam.
What is the difference between ~all and -all?
'-all' (fail) is strict — mail from unlisted servers is rejected. '~all' (softfail) means mail from unlisted servers may be accepted but marked as suspicious. Use -all for maximum security.
How many DNS lookups can an SPF record have?
SPF records are limited to 10 DNS lookups. Exceeding this limit causes permanent errors (PermError) and may result in email delivery failures.
Can I have multiple SPF records?
No. Multiple SPF records on the same domain cause a PermError. You must merge all SPF policies into a single TXT record.