IPv4 Addresses
go.microsoft. 1200 IN A 20.112.250.133 go.microsoft. 1200 IN A 20.231.239.246 go.microsoft. 1200 IN A 20.236.44.162 go.microsoft. 1200 IN A 20.70.246.20 go.microsoft. 1200 IN A 20.76.201.171
Name Servers
go.microsoft. 1200 IN NS ns1-09.azure-dns.com. go.microsoft. 1200 IN NS ns2-09.azure-dns.net. go.microsoft. 1200 IN NS ns3-09.azure-dns.org. go.microsoft. 1200 IN NS ns4-09.azure-dns.info.
SOA Details
go.microsoft. 1200 IN SOA ns1-09.azure-dns.com. azuredns-hostmaster.microsoft.com. 1 3600 300 2419200 300
Certificate Authority Authorization
go.microsoft. 1200 IN CAA 0 contactemail "[email protected]" go.microsoft. 1200 IN CAA 0 iodef "mailto:[email protected]"
DMARC
Organizational policy (p): how receivers treat mail that fails aligned DMARC checks — none (monitor only), quarantine (often junk), or reject (block).
pct: share of mail that gets quarantine/reject; 100 = all failing messages (default).
100Aggregate DMARC reports (ZIP/XML). Optional but recommended for visibility.
Forensic (per-failure) reports. Often omitted for privacy or volume.
go.microsoft. 1200 IN DMARC v=DMARC1; p=reject; pct=100; rua=mailto:[email protected]; ruf=mailto:[email protected]; fo=1
DKIM
No DKIM TXT with `v=DKIM1` was returned for the selector names we probe automatically.
SPF (Sender Policy Framework)
No SPF TXT record was returned (`v=spf1` / `spf2.0/`). SPF tells receivers which hosts may send mail for this domain; without it, aligned DMARC and spoofing defenses are weaker.
MTA-STS
This hostname does not publish an MTA-STS policy (no v=STSv1 TXT at _mta-sts.<name> and/or no policy at https://mta-sts.<name>/.well-known/mta-sts.txt).