Appearance
Is your IP on a spam blacklist? How to check and delist
Spam blocklists are just DNS zones: reverse your IP's octets, query them under the list's domain, and a 127.0.0.x answer means "listed" — a check you can run yourself in one dig command. And the most common discovery, for home connections, is being listed by policy rather than accusation: entire residential ranges are pre-listed because home IPs sending direct mail are nearly always botnets. Here's the check, the reading, and the honest delisting path.
Maintained by the ipconfig.io team · Reviewed 1 July 2026
Run the check
Take your public IP (curl ipconfig.io → say 203.0.113.42), reverse the octets, and query the list's zone:
bash
dig +short 42.113.0.203.zen.spamhaus.org # Spamhaus (aggregate zone)
dig +short 42.113.0.203.bl.spamcop.net # SpamCop
dig +short 42.113.0.203.b.barracudacentral.orgReading the result:
| Answer | Meaning |
|---|---|
| (nothing / NXDOMAIN) | Not listed on that list |
127.0.0.2–127.0.0.11 | Listed — the specific value encodes which sublist and why (each list documents its return codes) |
| An unexpected public IP | Your resolver is intercepting NXDOMAIN — retry via a different resolver (the compare-resolvers move) |
One practical caveat: Spamhaus refuses queries arriving via big public resolvers (1.1.1.1, 8.8.8.8) — if you get no useful answer, use your ISP's resolver or the list's own web lookup. Multi-list web checkers (MXToolbox and similar) wrap dozens of these queries in one page and are the pragmatic first stop.
Why you're listed when you did nothing
- Policy listings (PBL and cousins). Residential and dynamic ranges are listed pre-emptively — the position is "home connections shouldn't deliver mail directly," and legitimate senders relay through their provider's mail servers anyway. This listing affects direct-to-inbox delivery and nothing else; it isn't a reputation stain.
- Shared and inherited addresses. Under CGNAT you wear your poolmates' behavior; on dynamic IPs you inherit the previous holder's history. (Changing the address sometimes trades a bad entry for a clean one.)
- An actual problem. A compromised machine or misconfigured relay on your network earned the entry. This is the one to rule out honestly before delisting — a delist with the cause intact just re-lists.
For anyone running a real mail server, the listing checklist doubles as the setup checklist: static IP, matching reverse DNS (no PTR = near-guaranteed rejection), SPF/DKIM/DMARC in order, no open relay.
Delisting, honestly
Each list owns its process — find your IP on the list's lookup page, which links the removal path. The sequence that works: fix the cause, then request removal. Reputable lists (Spamhaus especially) delist promptly when the underlying issue is gone, and many entries expire on their own once the behavior stops. Paid "expedited delisting" from certain small lists is the tell of a racket — mail operators know which lists matter, and the extortionate ones mostly aren't consulted.
Also worth separating: DNSBLs answer mail servers about senders. The CAPTCHAs-everywhere experience on some connections comes from different reputation systems (the shared-address tax) — related feeling, different fix.
Frequently asked questions
Check my IP? Reverse the octets, dig under the list's zone (…zen.spamhaus.org etc.) — 127.0.0.x = listed. Web multi-checkers wrap the same.
Listed but innocent? Probably policy (residential ranges pre-listed), CGNAT poolmates, or a previous holder — not an accusation.
Delist? Fix the cause, then use the list's own removal process. Fast when honest; never pay for it.
Does it affect browsing? Rarely — DNSBLs are a mail-sender mechanism; browsing friction comes from other reputation systems.
Next steps
- What is reverse DNS? — the PTR requirement behind mail delivery.
- DNS lookups with dig and nslookup — the query toolbox this check is built on.
- What is CGNAT? — how strangers' behavior lands on your address.