The Role of Reverse DNS in Mail Server Trust
Learn how reverse DNS and PTR records affect mail server trust, why rDNS matters for email delivery, and how to fix missing or mismatched PTR records.
Introduction
Reverse DNS, also called rDNS or PTR lookup, maps an IP address back to a hostname. For mail servers, this is an important identity signal because receiving systems often check whether the sending IP has a valid reverse DNS record.
A missing, generic or mismatched PTR record can make a mail server look poorly configured. It may not block every email by itself, but it can contribute to spam filtering, rejection, delayed delivery or reputation problems when combined with weak SPF, DKIM, DMARC or poor sending behavior.
Quick answer
For mail server trust, the sending IP should have a PTR record that points to a proper mail hostname, such as mail.example.com. That hostname should also resolve forward to the same IP. This is often called forward-confirmed reverse DNS.
Reverse DNS
Reverse DNS is the opposite of normal DNS.
Normal DNS:
mail.example.com → 192.0.2.10
Reverse DNS:
192.0.2.10 → mail.example.com
The reverse DNS value is stored in a PTR record. For email, the PTR record helps receiving servers identify the hostname associated with the sending IP.
Reverse DNS is usually controlled by the IP owner or hosting/VPS provider, not by the normal domain DNS zone.
Why rDNS matters
Receiving mail servers use many signals to decide whether a message looks trustworthy. Reverse DNS is one of those signals.
- The sending IP has a real hostname
- The mail server is not an anonymous IP
- The hostname looks intentional
- The server identity matches mail configuration
- The IP is not using a generic provider name
- The mail server is configured professionally
rDNS alone does not guarantee inbox placement, but missing or bad rDNS can hurt deliverability.
Forward-confirmed rDNS
Forward-confirmed reverse DNS means the PTR hostname points back to the same sending IP.
PTR:
192.0.2.10 → mail.example.com
A record:
mail.example.com → 192.0.2.10
This creates a consistent identity loop.
Many mail operators prefer this because it shows that the IP and hostname are intentionally connected.
PTR and HELO
A mail server introduces itself using a HELO or EHLO hostname during SMTP communication. This name should be consistent with the mail server identity.
Good setup
- PTR record: mail.example.com
- HELO/EHLO: mail.example.com
- A record: mail.example.com points to sending IP
- SPF includes the sending IP or provider
- DKIM signs outgoing mail
- DMARC aligns policy and reporting
Bad setup
- PTR record missing
- HELO says localhost
- PTR points to generic provider hostname
- Mail hostname does not resolve
- SPF, DKIM and DMARC are missing
The values do not always need to be identical in every environment, but they should be consistent and explainable.
Who controls rDNS
Reverse DNS is controlled by whoever manages the IP address allocation.
- Hosting provider
- VPS provider
- Dedicated server provider
- Datacenter
- ISP
- Cloud provider
- Email sending provider
Adding a PTR record in your normal DNS panel usually does not change reverse DNS. You normally need to request rDNS from the provider that owns the IP range.
Why this matters
Reverse DNS matters because mail servers are expected to identify themselves clearly. A server sending mail directly from an IP with no PTR record, generic rDNS or mismatched hostname can look like temporary, compromised or low-quality infrastructure.
This is especially important for VPS, dedicated servers, hosting providers and anyone running their own outbound SMTP server.
How to check rDNS
Use Reverse DNS Checker to check the PTR record for the actual sending IP address.
- Sending IP — find the IP that really sends the email.
- PTR record — confirm the IP has a reverse DNS hostname.
- Forward DNS — confirm the PTR hostname resolves back to the same IP.
- HELO/EHLO name — check whether the mail server identifies itself with a proper hostname.
- SPF — confirm the sending IP or provider is authorized.
- DKIM and DMARC — confirm messages are authenticated and aligned.
- Blacklist status — check whether the IP is listed on reputation databases.
Check reverse DNS for mail
Use Reverse DNS Checker to check the PTR record for the actual sending IP address.
Common problems
Missing PTR record
HighThe sending IP has no reverse DNS hostname.
Next step: Ask the IP owner or hosting provider to set a PTR record.
Generic provider rDNS
MediumThe PTR points to a generic provider hostname instead of your mail identity.
Next step: Set rDNS to a proper hostname such as mail.example.com.
PTR hostname does not resolve forward
HighThe PTR hostname does not have an A record pointing back to the sending IP.
Next step: Add or fix the A record for the mail hostname.
HELO/EHLO mismatch
MediumThe mail server announces a hostname that does not match the expected mail identity.
Next step: Update mail server hostname or HELO configuration.
Multiple domains on one mail IP
LowOne IP may send for many domains, but it can only have one primary PTR hostname.
Next step: Use a neutral mail hostname and authenticate each domain with SPF, DKIM and DMARC.
Website IP checked instead of mail IP
MediumThe checked IP is not the actual outbound SMTP IP.
Next step: Find the real sending IP from headers, logs or bounce messages.
Provider refuses custom rDNS
MediumSome shared or managed mail services do not allow custom PTR records.
Next step: Use the provider’s documented mail hostname and authentication setup.
Bad rDNS plus blacklist listing
HighPoor mail identity combined with a listing can strongly hurt delivery.
Next step: Fix rDNS and investigate the listing cause.
How to fix rDNS
-
Step 1: Find the sending IP
Use email headers, bounce logs, mail server logs or SMTP provider dashboard.
-
Step 2: Choose a mail hostname
Use a clean hostname such as mail.example.com or smtp.example.com.
-
Step 3: Create the forward DNS record
Add an A record so the hostname points to the sending IP.
-
Step 4: Request PTR/rDNS from the provider
Ask the IP owner, VPS provider, datacenter or ISP to set the PTR record.
-
Step 5: Align HELO/EHLO
Configure the mail server to announce the same or a consistent hostname.
-
Step 6: Verify forward-confirmed rDNS
Check that IP → hostname and hostname → IP both work.
-
Step 7: Check SPF/DKIM/DMARC
Make sure mail authentication supports the same sending infrastructure.
-
Step 8: Re-test delivery
Send test emails and review headers, bounces and reputation results.
VPS mail servers
If you run your own mail server on a VPS or dedicated server, reverse DNS is your responsibility together with the provider.
- Hostname is not localhost
- Hostname uses a real domain
- A record points to the server IP
- PTR points back to the hostname
- HELO/EHLO matches the hostname
- SPF includes the server IP
- DKIM signing is enabled
- DMARC policy exists
- IP is not blacklisted
Without proper rDNS, self-hosted SMTP often struggles with delivery.
Examples
Good setup:
Sending IP:
192.0.2.10
PTR:
192.0.2.10 → mail.example.com
A record:
mail.example.com → 192.0.2.10
HELO/EHLO:
mail.example.com
SPF:
v=spf1 ip4:192.0.2.10 -all
Check PTR:
dig -x 192.0.2.10
Check A record:
dig mail.example.com A
Bad setup:
PTR:
missing
or:
PTR:
192.0.2.10 → server123.provider.example
HELO:
localhost
Examples are illustrative. Replace IPs and hostnames with your real mail server values.
Frequently asked questions
Is reverse DNS required for email?
Many receiving servers expect it. Missing rDNS can hurt delivery or contribute to rejection.
Who sets the PTR record?
The IP owner or provider usually sets PTR/rDNS, not the normal domain DNS panel.
Should PTR match my domain?
It should point to a valid mail hostname that resolves back to the sending IP.
Can one IP have PTR for many domains?
Usually one IP has one primary PTR hostname. Multiple sending domains can still authenticate with SPF, DKIM and DMARC.
Is rDNS enough to fix deliverability?
No. It is only one signal. You also need SPF, DKIM, DMARC, clean sending and good reputation.
Why does my website IP rDNS not match email?
Your email may be sent from a different IP or provider than your website.
What should my mail server hostname be?
Use a real hostname such as mail.example.com or smtp.example.com, with forward DNS and PTR configured consistently.
Related tools
Use these free tools to verify your configuration after applying changes.
Related guides
Browse all Blacklist & Reputation guides →Need help applying this fix?
Send us your domain, report link or issue details. CheckDomainHealth will review the request and route it to the right technical team if hands-on support is needed.
Was this guide helpful?
Your feedback helps us improve our guides for everyone.
Thanks for your feedback!