All tools are 100% free
Browse Tools
Home All 42+ Tools News Free SEO Audit Pricing About

Categories

Custom AI Solutions – AI2Flows
LIVE NEWS
Loading latest AI & SEO news…
HomeToolsDNS Health Checker
🔍 DNS Health Checker10 Record TypesLive Cloudflare DoHGrade A+ to F

Full DNS Audit — 10 Records. One Check.

Diagnose why emails land in spam, why your site went down after migration, or whether your DNS propagated. Checks A, MX, SPF, DMARC, DKIM and 5 more — instantly, free, no signup.

10
DNS record types
A+
Best possible grade
$0
Always free
<3s
Check time
DNS Health Checker

Full DNS Health Audit — 10 Record Types

A, AAAA, MX, NS, SPF, DMARC, DKIM, CAA, CNAME, SOA — live DNS checks via Cloudflare. Instant health grade.

Enter root domain only — no http:// or www needed. Example: google.com

All 10 DNS Records — What Each One Does

Every record type checked against best-practice standards with specific fix guidance.

🌐 A
A Record
IPv4 address — core web & email routing
🌐 AAAA
AAAA Record
IPv6 address — modern hosting standard
📧 MX
MX Record
Mail servers — required to receive email
🗂️ NS
NS Records
Nameservers — where your DNS lives
🛡️ SPF
SPF Record
Anti-spoofing — who can send your email
🔐 DMARC
DMARC
Email policy — reject phishing attempts
✍️ DKIM
DKIM
Email signing — cryptographic proof
🏷️ CAA
CAA Record
SSL security — which CAs can issue certs
🔗 CNAME
www CNAME
Subdomain — www visitor routing
📋 SOA
SOA Record
Zone authority — DNS infrastructure health

When to use this tool

Real problems this tool diagnoses in seconds

📬
Emails landing in spam
Problem: Your emails look legitimate but keep ending up in spam at Gmail, Outlook, and Yahoo.
Cause: Missing or misconfigured SPF, DMARC, or DKIM records. Gmail and Yahoo now require all three for reliable delivery.
Fix: DNS health check reveals exactly which records are missing and what each policy is set to.
🔄
After a website migration
Problem: You moved to a new host or platform. The site loads but something is wrong — email, subdomains, or forms.
Cause: MX records pointing to old mail server, www CNAME missing, or nameservers not fully updated.
Fix: DNS health check confirms every record transferred correctly to the new setup.
⏱️
Did my DNS change propagate?
Problem: You updated your A record or nameservers hours ago. Is it live? Did it take effect?
Cause: DNS changes have TTL (Time to Live) values — propagation takes minutes to 48 hours.
Fix: Run a DNS health check to see the current live values from Cloudflare's global network.
🔒
New client DNS audit
Problem: You're onboarding a new client and need to know the state of their DNS before touching anything.
Cause: Most business domains have at least 2–3 DNS issues — no DMARC, weak SPF, missing CAA.
Fix: One check gives you a full audit report to present to the client with specific recommendations.

DNS is the #1 reason emails land in spam

Since Google and Yahoo tightened enforcement in 2024, three DNS records are now effectively mandatory for reliable email delivery: SPF, DMARC, and DKIM.

Missing any of these means your emails — newsletters, transactional messages, client invoices — can be silently rejected or sent to spam without any bounce notification.

Also validate your email list →
SPF Missing → unauthorized senders can impersonate your domain
DMARC Missing → no policy; phishing from your domain goes unblocked
DKIM Missing → emails fail strict authentication at many providers
MX Missing → no one can reply to your emails

FAQ

Why check DNS if my site is working fine?
A working website does not mean healthy DNS. Common silent problems: missing SPF causing emails to land in spam, DMARC set to "none" giving zero phishing protection, and www subdomain not configured. These issues cause damage before you notice them.
My emails are going to spam — can this help?
Yes — this is the most common use case. Most email spam issues are caused by missing or misconfigured SPF, DMARC, or DKIM records. The tool checks all three and tells you exactly what each one is set to and what needs to change.
What is DMARC and why does my domain need it?
DMARC tells mail servers what to do with emails that fail SPF or DKIM — reject them, quarantine them, or just monitor. Without DMARC, anyone can send emails pretending to be from your domain. Google and Yahoo now require DMARC for all senders since 2024.
The DKIM check shows not found — is my email broken?
Not necessarily. The DKIM check tests 11 common selectors (default, google, selector1, etc.). If you use a custom selector from your email provider, the check may show "not found" even if DKIM is correctly configured. Check your email provider's setup instructions for the exact selector name.
How long does DNS take to propagate after I make changes?
It depends on the TTL (Time to Live) of your existing records. Low TTL values (300–600 seconds) propagate within minutes. Default TTL values (3600–86400 seconds) can take 1–48 hours. Run this tool after making changes to see the current live values from Cloudflare's global resolver.

Complete your email deliverability audit

DNS health is the foundation — validate your email list and check your technical SEO too.

✉ Bulk Email Validator → 🔍 Technical SEO Auditor → 🔗 Broken Link Checker →