Free DMARC Record Checker
Analyze your domain's DMARC policy, check enforcement level, and verify email authentication alignment. Instant results, no registration needed.
What is DMARC?
DMARC (Domain-based Message Authentication, Reporting & Conformance) is an email authentication protocol that builds on SPF and DKIM. It tells receiving mail servers what to do when an email fails authentication checks: monitor, quarantine, or reject. DMARC is essential for protecting your domain against phishing and email fraud.
Stop Phishing Attacks
DMARC prevents attackers from sending fraudulent emails that appear to come from your domain. Without DMARC, phishing emails using your brand can target your customers and partners.
Get Visibility with Reports
DMARC provides aggregate and forensic reports showing who is sending email from your domain, both legitimate and fraudulent sources. This visibility is critical for identifying unauthorized use.
Boost Email Deliverability
Gmail, Yahoo, and Microsoft now require DMARC for bulk senders. A properly configured DMARC record signals to email providers that your domain is trustworthy, improving inbox placement.
DMARC Policy Levels Explained
p=none
Monitoring mode only. Failed emails are still delivered. Use this as a starting point to collect DMARC reports and identify all legitimate sending sources before enforcing. Our checker detects this and recommends upgrading when ready.
v=DMARC1; p=none; rua=mailto:[email protected]
p=quarantine
Failed emails are sent to the spam/junk folder. This is a good intermediate step before full enforcement. Recipients can still find and review quarantined messages if needed.
v=DMARC1; p=quarantine; rua=mailto:[email protected]
p=reject
Failed emails are blocked entirely. This is the strongest level of protection and the recommended policy once you have verified all legitimate senders. Fraudulent emails never reach recipients.
v=DMARC1; p=reject; rua=mailto:[email protected]
What Our DMARC Checker Validates
DMARC Record Presence
Queries _dmarc.yourdomain.com to check if a DMARC record exists.
Policy Enforcement Level
Analyzes the policy (none, quarantine, reject) and recommends improvements.
SPF Alignment
Verifies SPF is configured correctly to work with your DMARC policy.
Overall DNS Health
Full health score covering DMARC, SPF, DNSSEC, CAA, and all DNS record types.
DMARC Checker - Frequently Asked Questions
What is DMARC?
DMARC (Domain-based Message Authentication, Reporting & Conformance) is an email authentication protocol that tells receiving mail servers how to handle emails that fail SPF and DKIM checks. It helps prevent phishing and email spoofing.
What DMARC policy should I use?
Start with p=none to monitor without affecting delivery, then move to p=quarantine (sends failed emails to spam), and finally p=reject (blocks failed emails entirely). Use our checker regularly to validate your DMARC record at each stage.
Is DMARC required by Gmail and Yahoo?
Yes. Since February 2024, Gmail and Yahoo require DMARC records for domains sending more than 5,000 emails per day. Even smaller senders benefit from DMARC for better deliverability and brand protection.
What are DMARC aggregate reports?
DMARC aggregate reports (rua) are XML reports sent by receiving mail servers showing who is sending email from your domain. They help you identify legitimate senders before enforcing a strict DMARC policy.
How does DMARC work with SPF and DKIM?
DMARC requires that at least one of SPF or DKIM passes AND aligns with the From domain. Alignment means the domain in SPF or DKIM matches the domain in the email's From header. Our checker validates both SPF and DMARC together.
How long does it take for a DMARC record to take effect?
DMARC records take effect as soon as DNS propagation completes, typically within minutes to 48 hours depending on your DNS provider's TTL settings. Use our checker to verify propagation.
Monitor Your DMARC Record Continuously
Get instant alerts when your DMARC policy changes or is removed. DNSMonit tracks DMARC, SPF, and all DNS records so you catch unauthorized modifications before they impact email delivery.