Skip to content
WebScore LogoWebScore

Email DNS Records Generator

Generate SPF, DKIM, and DMARC records for your domain

Your Domain

Enter your domain to generate custom email authentication records

Enter your domain without www (e.g., example.com)

SPF

Prevents email spoofing by specifying which servers can send email for your domain

DKIM

Adds a digital signature to verify emails haven't been tampered with in transit

DMARC

Tells receivers how to handle emails that fail SPF or DKIM checks

Want to verify your DNS records work?

Get the full WebScore report

After adding these records, run a full website scan to validate your email security configuration. Unlock the detailed report for $3 or subscribe from $9/mo for ongoing monitoring with alerts if anything breaks.

Full detailed report with all issues and step-by-step fixes
Unlock any report for just $3 — no subscription needed
Automated daily/weekly monitoring with alerts
AI-powered UI/UX audit with annotated screenshots
Domain authority metrics from MOZ, Majestic & Ahrefs
Subscribe from $9/mo for full coverage and tracking

Scan free, no credit card required. Unlock full reports from $3 each or subscribe from $9/mo.

How This Generator Works

This tool builds DNS TXT records for email authentication without requiring you to memorize DNS syntax. Select your email providers, set your security policies, and copy the generated records directly into your DNS provider (Cloudflare, GoDaddy, Namecheap, Route 53, etc.).

SPF Record Builder

Select your email services (Google Workspace, Microsoft 365, SendGrid, Mailchimp, Amazon SES) and we generate the correct SPF include statements with proper syntax.

DMARC Policy Builder

Configure your DMARC policy (none, quarantine, reject), alignment mode, percentage, and reporting email addresses. We build the complete _dmarc TXT record.

DKIM Configuration

Set your DKIM selector name. Most email providers (Google, Microsoft) generate the key pair — you just need the correct DNS record location.

Where to Add These Records

After generating your records, add them as TXT records in your domain's DNS settings. The exact steps vary by provider:

  • Cloudflare — DNS → Records → Add Record → Type: TXT
  • GoDaddy — Domain Settings → DNS Management → Add → TXT
  • Namecheap — Domain List → Manage → Advanced DNS → Add New Record → TXT
  • AWS Route 53 — Hosted Zones → Create Record → Type: TXT

DNS changes can take up to 48 hours to propagate, though most providers update within minutes. After adding records, use our Email Security Checker to verify everything is configured correctly.

Implementation Guide

For a step-by-step walkthrough of email authentication including testing, rollout strategy, and common mistakes, read our complete SPF, DKIM, and DMARC implementation guide.