Email Security Analysis of nhs.net

Complete verification of nhs.net's SPF, DKIM, DMARC, and MTA-STS records. Find out if this domain is protected against email spoofing.

Last updated: April 14, 2026

95A

This domain is protected against spoofing

SPF

v=spf1 ip4:213.161.89.71 ip4:213.161.89.72 ip4:213.161.89.73 ip4:213.161.89.103 ip4:213.161.89.104 ip4:213.161.89.105 ip4:155.231.210.221 ip4:155.231.210.253 ip4:51.140.243.175 ip4:51.132.11.4  ip4:10.13.29.0/26 ip4:10.13.31.0/26 ip4:10.13.29.96/27 ip4:10.13.31.96/27 ip4:155.231.208.0/27 ip4:155.231.208.128/27 include:spf.protection.outlook.com -all

DKIM

Selectors: default, selector1, selector2

DMARC

v=DMARC1; p=reject;pct=100;rua=mailto:8376428f@mxtoolbox.dmarc-report.com;ruf=mailto:postmaster@nhs.net,mailto:8376428f@forensics.dmarc-report.com

MX

nhs-net.mail.protection.outlook.com

MTA-STS

Warning

v=STSv1; id=20241203;

Read the guide

Recommendations

1Switch your MTA-STS policy from testing to enforce mode
In testing mode, MTA-STS only reports TLS failures without blocking delivery. Switching to enforce mode ensures that emails are only delivered over encrypted connections, providing real protection against interception.

Run a live analysis

The results above are updated daily. For an instant check of nhs.net, run a live analysis.

Analyze nhs.net live

Guides to understand these results

SPF Guide

Understand how SPF defines which servers are authorized to send emails for a domain.

DKIM Guide

Discover how DKIM cryptographically signs your emails to guarantee their authenticity.

DMARC Guide

Learn how DMARC orchestrates SPF and DKIM to protect your domain.

MTA-STS Guide

Learn how MTA-STS enforces TLS encryption to protect your emails in transit.

SPF vs DKIM vs DMARC

Compare the three protocols and understand how they work together.