DMARC Record Checker & Lookup Tool

Identify and resolve possible issues with your domain's DMARC record for a specific selector.

Start Free Trial Start Free Trial

What is DMARC?

The term DMARC derived from the initials of "Domain-Based Message Authentication, Reporting & Conformance." DMARC records are employed to thwart malicious internet users and computer hackers attempting email fraud. DMARC aims to prevent attacks where the sender's email address is falsified.

DKIM Record Checker & Lookup Tool

Connect to our experts

  1. Block all email-based threats
  2. Get real-time intelligence on attacks
  3. Zero Investment to Start
For more information, please see our Privacy Policy.

Frequently Asked Questions

DMARC is always used alongside SPF and DKIM authentication and verification methods. To establish your DMARC record, go to your domain name's DNS management, where SPF and DKIM records are already configured, and generate a TXT record with DMARC tags to enhance email security and authentication for your domain.

DMARC informs email servers about what to do when they receive a message that appears to come from your email account but fails authentication checks or doesn't meet the authentication requirements in your DMARC policy record. This way, unauthenticated messages cannot impersonate you or your company.

Updating a DMARC record can be easily done through the DNS management section of your domain (as a TXT record).

The commonly used tags in a DMARC record are typically formatted as follows:
Label Name Use Aim Example
v Mandatory Protocol version v=DMARC1
p Mandatory Policy associated with the domain p=quarantine
pct  Optional Percentage of filtered messages pct=100
rua  Optional Reporting URI for aggregate reports rua=mailto:[email protected]
sp Optional Policy for subdomains of the domain sp=reject
aspf  Optional Alignment mode for SPF


DMARC reports are sent regularly to the email address you specified in your DMARC record. These reports will provide you with the following information:
  1. Who has been sending emails to your email account?
  2. What percentage of sent emails have passed DMARC checks successfully?
  3. Which servers have sent emails that failed DMARC checks?
  4. The DMARC actions taken on unauthenticated emails: none, quarantine, or reject.

Email account owners or account administrators should regularly monitor DMARC reports and use them to take necessary measures against potential impersonation, spam, or phishing attempts.

Create a specific group or mailbox for your reports.
Different email service providers send email delivery reports to the email address listed in the DMARC record. It is recommended to define a specific group or folder in the relevant email account to manage routine DMARC report flows and archive them chronologically.

You can easily disable DMARC records by removing the relevant (TXT) record from the domain's DNS management interface.

Email security is crucial to prevent identity theft and ensure that messages are sent and received only by genuine accounts, thus thwarting potential fraudulent attempts.

The "Domain-Based Message Authentication, Reporting, and Conformance" system, known as DMARC, is an essential security reporting mechanism aimed at preventing email spoofing, phishing, and unwanted spam.

DMARC is primarily a reporting system. Email providers (such as Yahoo, Gmail, Outlook, Yandex, etc.) generate reports based on the DMARC record you've added, making it easier to detect malicious activities related to emails sent from your domain. Therefore, DMARC by itself is not a mechanism that prevents spam or phishing attacks.

An example DMARC record appears in the following format:

v=DMARC1; p=reject; rua=mailto:[email protected], mailto:[email protected]; pct=100; adkim=s; aspf=s