DMARC Checker
Domain-based Message Authentication, Reporting & Conformance (DMARC) tells mail servers what to do when SPF or DKIM checks fail.
Check your domainWhat is DMARC?
DMARC is an email authentication protocol that builds on SPF and DKIM. It allows domain owners to publish a policy that tells receiving mail servers how to handle emails that fail authentication, and it provides reporting for visibility and monitoring.
Why DMARC matters
- Prevents domain spoofing and phishing attacks
- Protects your brand reputation
- Improves email trust and deliverability
How DMARC works
- An email is checked against SPF and DKIM
- DMARC evaluates alignment and authentication results
- The published DMARC policy is applied
- Receivers take action and send reports
DMARC policy options
- p=none — monitor email traffic without blocking
- p=quarantine — send failing messages to spam
- p=reject — block unauthenticated messages entirely
Example DMARC record
v=DMARC1; p=quarantine; rua=mailto:dmarc@example.com
This DMARC record instructs receiving servers to quarantine failing messages and send aggregate reports to the specified email address.
Common DMARC mistakes
- No DMARC record published
- Staying on
p=noneindefinitely - Misaligned SPF or DKIM configuration
- Ignoring DMARC reports
DMARC, SPF, and DKIM
DMARC relies on SPF and DKIM for authentication. Without properly configured SPF and DKIM, DMARC cannot enforce policy decisions.