Email Blacklist Check
Resolve a domain's MX hosts to IPs and check each against 49 IP blacklists plus the domain against 9 domain blacklists.
Monitor this automatically
NetTests can run this check on a schedule, preserve historical results, compare changes over time, and alert you the moment something breaks.
Start monitoring free → See all monitoring productsFrequently Asked Questions
What is an email blacklist (DNSBL)?
A DNSBL (DNS-based Blackhole List) is a list of IP addresses or domains known to send spam or abuse. Receiving mail servers query these lists in real time during the SMTP connection. Being listed on Spamhaus SBL causes immediate delivery failures with most major mail providers.
Why does this tool check MX host IPs rather than my domain IP?
IP blacklists target the IPs that actually send email — your MX servers. This tool resolves your domain's MX records to their IP addresses and checks each against IP-based RBLs (Spamhaus, SORBS, Barracuda, SpamCop, etc.). It also checks the domain itself against domain blacklists (DBL) that block known malicious domains regardless of IP.
I'm listed — how do I get delisted?
First fix the root cause: malware, open relay, or compromised account. Then visit the blacklist's delisting page. Spamhaus SBL/XBL, SORBS, and SpamCop offer self-service removal; Barracuda requires a form. Spamhaus PBL listings are by policy for residential IPs — use your ISP's relay or a business mail service rather than direct sending.
How often should I check for blacklistings?
After any mail infrastructure change, or whenever you notice a deliverability drop. For production servers, automated daily checks are recommended — listing status can change within hours of a spam incident without any direct notification to you.
Related Report Tools
These tools and monitors cover the same area — worth checking if you're already here.
Network Tools
-
HTTP Request
Send HTTP requests with custom method, headers, body, and authentication — inspect the full response.
-
HTTP Request Timing
Load a URL in headless Chromium and stream every fetched resource with size and timing.
-
Uptime Check
The simplest possible check: fetch the page, confirm it returns 2xx.
-
CORS Tester
Test any URL for CORS (Cross-Origin Resource Sharing) with a custom method, headers, and body — see exactly why a browser would allow or block the request.
-
Dead Link Checker
Crawl a website and find broken internal links — renders JS pages with a headless browser.
-
IP Blacklist Check
Check an IPv4 address against 49 major DNS blacklists (Spamhaus, SORBS, Barracuda, SpamCop, etc.).
-
Network Path Monitor
Continuous traceroute with per-hop loss and RTT statistics.
-
Traceroute
Trace the path packets take to a destination host, hop by hop.
-
Ping Scanner
Ping many hosts in parallel and report which are alive.
-
Ping Host
Send ICMP echo requests and report RTT and packet loss.
-
IP Geolocation
Resolve a domain or IP to its city, country, ASN/org, and coordinates — with a map.
-
IPv4 ↔ IPv6
Convert IPv4 to/from IPv4-mapped IPv6 (::ffff:a.b.c.d).
-
MAC OUI Lookup
Look up a MAC address's first 3 octets in the IEEE OUI vendor database (curated subset).
Email / SMTP Diagnostics
-
Email Health
One-click domain scorecard — Blacklist, Mail Server, Web Server, and DNS checks graded Errors / Warnings / Passed, MXToolbox-style.
-
Email Records Check
Consolidated MX, SPF, DMARC, and DKIM-selector lookup for an email domain.
-
SPF Record Checker
Look up and validate a domain's SPF (Sender Policy Framework) TXT record.
-
Email Blacklist Check
Resolve a domain's MX hosts to IPs and check each against 49 IP blacklists plus the domain itself against 9 domain blacklists.
-
SMTP Banner Probe
Connect to an SMTP server, capture its banner + EHLO capabilities, and test STARTTLS.
Packet Generation & Testing
-
TCP/UDP Connection Tester
Check TCP port reachability; optionally send a payload and read the reply.
-
TLS Handshake Inspector
Inspect a server's TLS handshake: version, cipher, ALPN, full cert chain.
-
HTTP Availability Check
Probe a list of hostnames (max 16) for HTTP and HTTPS availability.
-
HTTP Latency
Send N HTTP HEAD requests to a URL and report min/median/mean/max/stddev latency. From this server's vantage.
-
Path MTU Probe
Discover the path MTU to a host by sending increasingly large DF-bit pings (binary search).
IP & Subnet Utilities
Routing & BGP
TLS / SSL Auditing
-
TLS Quick Scan
Probe which TLS protocol versions a server accepts and show the cipher each negotiates.
-
TLS Deep Scan
Full chain validation, OCSP stapling, SCT count, and per-TLS-version cipher matrix.
-
SSL Certificate Expiration
Days remaining before a server's TLS certificate (and its full chain) expires.
-
Domain Certificate Audit
Search Certificate Transparency logs for every SSL certificate ever issued to a domain — reveals subdomains, issuers, and historical issuance.
NTP / Time Sync
HTTP/2 & WebSocket
-
HTTP/2 Probe
Negotiate HTTP/2 via ALPN and decode the server's SETTINGS frame (window size, max streams, etc.).
-
WebSocket Probe
Send a WebSocket Upgrade handshake and verify the Sec-WebSocket-Accept response, subprotocols, and extensions.
-
HTTP/2 Stress Testerlogin
Benchmark HTTP/2 server performance — measure requests per second, latency distribution, and concurrent stream throughput under sustained load.
Encoding & Conversion
-
Hex ↔ Text
Convert UTF-8 text to a hex string, or parse a hex string back to text (separators :/.- ignored).
-
Binary ↔ Text
Convert UTF-8 text to 8-bit binary, or parse a binary string back to text.
-
Case Converter
Convert text between common casings: UPPER, lower, Title, snake_case, kebab-case, camelCase.
-
Number Base
Convert a number between decimal, binary, octal, and hexadecimal representations.
-
Unix Timestamp
Convert between Unix epoch seconds and ISO/RFC datetime formats (UTC).
-
IPv4 ↔ Decimal
Convert between dotted IPv4 notation, 32-bit decimal, hex, and dotted binary.
-
JWT Decoder
Decode a JWT into its header and payload (no signature verification — that needs the signing key).