IPv4 Addresses
heikegastmann.com. 300 IN A 199.16.172.240 heikegastmann.com. 300 IN A 199.16.173.238
Name Servers
heikegastmann.com. 1200 IN NS amy.ns.cloudflare.com. heikegastmann.com. 1200 IN NS fred.ns.cloudflare.com.
Mail Servers
heikegastmann.com. 300 IN MX 10 mx1-us1.ppe-hosted.com. heikegastmann.com. 300 IN MX 20 mx2-us1.ppe-hosted.com.
SOA Details
heikegastmann.com. 1200 IN SOA amy.ns.cloudflare.com. dns.cloudflare.com. 2403134337 10000 2400 604800 1800
Certificate Authority Authorization
No CAA records were returned at this registrable domain name. With no CAA policy, any public certificate authority (CA) may issue TLS certificates for names under this zone unless a parent publishes CAA; add issue / issuewild / iodef records to restrict issuance.
DMARC
Organizational policy (p): how receivers treat mail that fails aligned DMARC checks — none (monitor only), quarantine (often junk), or reject (block).
Subdomain policy (sp): when set, it applies to hostnames below this domain instead of p; if omitted, subdomains inherit the organizational policy.
pct: share of mail that gets quarantine/reject; 100 = all failing messages (default).
100Aggregate DMARC reports (ZIP/XML). Optional but recommended for visibility.
Forensic (per-failure) reports. Often omitted for privacy or volume.
heikegastmann.com. 300 IN DMARC v=DMARC1; p=none; pct=100; rua=mailto:[email protected]; sp=none; aspf=r;
DKIM
No DKIM TXT with `v=DKIM1` was returned for the selector names we probe automatically.
SPF (Sender Policy Framework)
| Qualifier | Mechanism | Target / value | Valid | Details |
|---|---|---|---|---|
| + Pass | a |
|
|
|
| + Pass | invalid |
dispatch-us.ppe-hosted.com
|
|
|
| + Pass | include |
|
|
|
| + Pass | invalid |
secureserver.net
|
|
|
| - Fail | all |
—
|
|
SPF issues
- Token "dispatch-us.ppe-hosted.com" looks like a hostname but SPF requires an explicit mechanism prefix (for example `a:dispatch-us.ppe-hosted.com`, `mx:dispatch-us.ppe-hosted.com`, or `include:dispatch-us.ppe-hosted.com`; see RFC 7208)
- invalid domain in include
- Token "secureserver.net" looks like a hostname but SPF requires an explicit mechanism prefix (for example `a:secureserver.net`, `mx:secureserver.net`, or `include:secureserver.net`; see RFC 7208)
heikegastmann.com. 120 IN TXT "v=spf1 a: dispatch-us.ppe-hosted.com include: secureserver.net -all"
MTA-STS
This hostname does not publish an MTA-STS policy (no v=STSv1 TXT at _mta-sts.<name> and/or no policy at https://mta-sts.<name>/.well-known/mta-sts.txt).
Text Content
heikegastmann.com. 120 IN TXT "MS=ms46473790" heikegastmann.com. 120 IN TXT "google-site-verification=8jfiIQprb_DSskwAldwq0HWqxLbvEshLvjTAbdPHnEY" heikegastmann.com. 120 IN TXT "3h3guv38en7c7rseisn0as03q0" heikegastmann.com. 120 IN TXT "t2dvj9a3m77jcb899ehlf6l190"