Learn how to set up DMARC for your domain and monitor it with DMARC Monitor.
DMARC (Domain-based Message Authentication, Reporting, and Conformance) is an email authentication protocol that builds on SPF and DKIM. It tells receiving mail servers what to do when emails fail authentication and provides you with reports about who is sending email on behalf of your domain.
Sign up for DMARC Monitor and add your domain from the Domains page. We'll automatically scan your existing DNS records to check your current email authentication setup.
After adding your domain, we provide you with the exact DMARC DNS record to add. You'll get a TXT record with the host _dmarc and a value that includes your unique reporting address.
Add this record to your domain's DNS settings through your domain provider (Cloudflare, GoDaddy, Namecheap, etc.).
Once your DMARC record is live, email providers like Google, Microsoft, and Yahoo will start sending aggregate reports to DMARC Monitor. Reports typically arrive within 24-48 hours.
Use your DMARC Monitor dashboard to see all email sources, identify unauthorized senders, and gradually tighten your policy from p=none to p=quarantine and eventually p=reject.
No action taken on failing emails. Use this first to collect data and identify legitimate email sources.
Failing emails go to spam/junk folder. Use once you've verified all legitimate sources pass authentication.
Failing emails are blocked entirely. Maximum protection once you're confident in your email authentication.
| Tag | Description | Example |
|---|---|---|
| v | Version (required) | v=DMARC1 |
| p | Policy (required) | p=none |
| rua | Aggregate report address | rua=mailto:reports@example.com |
| ruf | Forensic report address | ruf=mailto:forensic@example.com |
| pct | Percentage of emails to apply policy | pct=100 |
| sp | Subdomain policy | sp=reject |
DMARC is just the foundation. DMARC Monitor provides comprehensive tools to ensure your domain's email infrastructure is fully protected and compliant.
Get an instant overview of your domain's email security posture. Your health score combines DMARC policy strength, SPF validity, DKIM configuration, and other factors into a single metric that helps you track improvements over time.
Even with perfect DMARC, your emails won't reach inboxes if your sending IPs are blacklisted. DMARC Monitor checks your domain and mail server IPs against major Real-time Blackhole Lists (RBLs).
Your email authentication depends on DNS records being correctly configured. DMARC Monitor continuously monitors your critical DNS records and SSL certificates to catch issues before they affect email delivery.
Generate reports showing your domain's DMARC compliance status over time. Perfect for security audits, management reporting, or demonstrating compliance with email security requirements.