EN English ES Español DE Deutsch FR Français PT Português JP 日本語 CN 中文 IT Italiano KR 한국어 NL Nederlands
All Tools For Domainers Security Domain Checker DNS Lookup SSL Checker Subdomains Tech Stack Reputation

📧 SPF Record Builder

Build and validate SPF records. Visual SPF builder with include, IP, and mechanism support.

Building SPF record...
Generated SPF Record
API Endpoint
POST /v1/tools/spf/build
Interactive intelligence tool

Run the check, then ship the workflow

Use the browser tool for a fast answer, then move the same logic into scripts, monitoring, or product flows when it becomes repeatable.

1
Start with the live form

Enter a domain, URL, IP, email, or record and get a focused result without setup.

2
Review decision-ready signals

Outputs highlight statuses, risks, records, and next actions instead of raw provider noise.

3
Automate the winning workflow

Use the request and response examples to turn a one-off check into an API call or recipe.

Used by people at amazing companies

VercelLLM PulseOLXCasa ModernaPipeCal.comBeehiivSnykTogglRemoteSprigDeel

What this tool helps you decide

Each page is shaped around a practical operational question, not just a raw lookup.

Signal

See the current DNS, registration, security, pricing, or reputation evidence.

Context

Compare the result with related checks so the next move is easier to trust.

Action

Copy examples, open linked tools, or move into API documentation when you need scale.

Trust signals before you integrate

Transparent docs, authenticated requests, and visible reliability details make it easier to evaluate DomScan before you ship.

Uptime API artifacts

OpenAPI, Swagger, Postman, CLI, SDK, and MCP links are one click away.

API keys Protected access

Authenticated endpoints use API keys with clear credit costs before you call them.

Free allowance Sign Up for Free

Start with 10,000 monthly credits and upgrade only when usage grows.

Active Example Request

Start from the curl and HTTP samples, then map the parameters into your application code.

Key Features

Default Policy

Choose soft fail, hard fail, or neutral for the ending mechanism.

Include domains (one per line)

Add third-party mail providers one line at a time.

DNS Lookups

Track DNS lookups so the SPF record stays within protocol limits.

Example Request

POST /v1/tools/spf/build JSON 
{
  "all": "softfail",
  "include": ["_spf.google.com"],
  "ip4": ["203.0.113.0/24"]
}

Example Response

Generated SPF Record JSON 
{
  "record": "v=spf1 include:_spf.google.com ip4:203.0.113.0/24 ~all",
  "dns_lookups": 3
}

Built from the same API surface

The browser experience previews DomScan's structured endpoints, so teams can validate a use case before writing code.

Open API docs All Tools

Frequently Asked Questions

What counts toward the 10 DNS lookup limit?

Each include, redirect, a, mx, ptr, exists, and ip mechanism can contribute to lookup usage. Keep the final record under the SPF limit.

Why is ~all usually recommended?

Soft fail is a safer default while you are testing. You can move to -all once you are confident all sending sources are covered.

Can I add multiple sending services?

Yes. Add each vendor as an include and add direct IP ranges only when the sender requires it.

Related Tools & Resources

DMARC Record BuilderDKIM Selector Discovery