DNS Check

The EXPERTE.com DNS Check automatically determines the most important DNS entries of a domain and displays them clearly. In addition to the classic DNS entries, the DNS check also checks whether security features such as DNSSEC or DANE are used and whether e-mail validations such as SPF or DMARC are activated.

DNS Records

The DNS-Check currently checks the following records:

Name	Beschreibung
A	The A-Record assigns an IPv4 address to the domain.
AAAA	The AAAA record assigns an IPv6 address to the domain.
MX	The MX record specifies the domain name under which the mail servers of the domain can be reached.
NS	The NS records specifies which name servers are responsible for the domain.
SOA	The SOA record specifies, among other things, which name server is the primary name server for this domain and contains a serial number of the zone.
TXT	Freely definable text can be stored in a TXT entry. It is often used for owner verification, SPF or DKIM.
CNAME	A CNAME record is a reference to another domain name that serves as an alias for the original name.

Security Features

In addition, the DNS-Check checks the following security features:

Name	Description
CAA	A CAA entry can be used to specify which Certificate Authority (CA) is authorized to issue an SSL Certificate for this domain.
TLSA	A TLSA entry can be used to specify which certificates a client can trust (DANE).
DNSSEC	With DNSSEC, a DNS user can verify that the received DNS data is identical to the original DNS data. This can prevent DNS spoofing.

E-Mail Validation

Name	Description
SPF	With the Sender Policy Framework (SPF) you can define which IP addresses are allowed to send e-mails under the domain name.
DMARC	DMARC determines what should happen to e-mails that do not fulfill certain policies (e.g. SPF).