Free tool

DMARC check.

Paste a domain. We’ll find your DMARC record, explain what it means, and recommend a safer policy.

What is DMARC?

DMARC is an email authentication standard that helps prevent spoofing and improves deliverability. It tells Gmail/Outlook what to do if a message fails authentication checks.

Why it matters

Without DMARC, attackers can impersonate your domain. Providers also have less confidence in your mail.

What you’re looking for

A published DMARC record, reporting (rua), and a policy that matches your readiness (none → quarantine → reject).

What we recommend

Start with reporting, then gradually enforce. We’ll suggest a record you can copy/paste.

DMARC in plain English

DMARC is a policy layer on top of SPF and DKIM. SPF says “these servers can send mail for my domain.” DKIM says “this message was signed by my domain.” DMARC ties them together and lets you publish what mailbox providers should do when messages fail authentication.

The policy is the p= tag: none (monitor), quarantine (send to spam), or reject (block). The most common safe rollout is: publish p=none with reporting (rua=), fix alignment issues, then gradually move toward quarantine/reject.

Common gotchas

p=none forever — you get visibility but no enforcement.
No reporting — missing/invalid rua= means you can’t see failures.
Alignment issues — SPF/DKIM can “pass” but still fail DMARC if they don’t align with your From domain.

Next tools

Full deliverability checkup → Pricing →

SPF check → DKIM check coming soon.

Deeper guide

We’ll publish a deeper walkthrough soon (examples, rollout steps, and how to interpret reports).

DMARC in 10 minutes (coming soon)

Want the full deliverability checkup? →