Generate Your DMARC Record

Follow the steps to create a customized DMARC record for your domain

1
2
3
4

Let's get started!

Please provide the domain for which you'd like to generate a DMARC record

Email Security

What is DMARC and why should you use it?

DMARC (Domain-based Message Authentication, Reporting & Conformance) is an email authentication protocol that protects your domain from spoofing, phishing, and email fraud.

It works on top of SPF and DKIM and tells receiving mail servers:

Whether your emails are legit
What to do if an email fails authentication
Where to send reports about your domain's email activity

Without a DMARC record, attackers can easily send emails pretending to be you — damaging your brand trust, deliverability, and sender reputation.

What this generator does for you

Syntax-correct DMARC record Perfectly formatted every time
Prevents configuration mistakes Guided setup with validation
Works with all major ISPs Gmail, Outlook, Yahoo & more
Monitoring & enforcement modes Start safe, then upgrade protection
Scroll up to generate your DMARC record
You're just one click away from clean email lists.
Get Free Credits
Next Steps

What to do after generating your record

Once you've generated your DMARC record, follow these steps to activate it

1
Step One

Add the record to DNS

Copy the generated DMARC TXT record and add it to your domain's DNS under:

_dmarc.yourdomain.com
2
Step Two

Start with monitoring

Recommended

If you're new to DMARC, use:

p=none

This allows you to monitor email activity without affecting delivery.

3
Step Three

Review DMARC reports

DMARC reports help you:

See who's sending email from your domain

Identify legitimate vs unauthorized sources

Check authentication status

Monitor SPF and DKIM pass/fail rates

Catch spoofing attempts

Detect abuse before it affects your reputation

Most DMARC tools provide user-friendly dashboards to visualize this data without parsing raw XML.

4
Final Step

Enforce protection

After monitoring for a few weeks and fixing any authentication issues, gradually increase enforcement:

p=quarantine Level 2: Quarantine (Recommended)

Suspicious emails go to spam.

p=reject Level 3: Reject (Maximum Security)

Unauthorized emails are blocked.

Full DMARC protection helps prevent phishing, protects your brand, and improves email deliverability.

FAQs

Frequently Asked Questions

Question Icon

What is a DMARC record and why do I need one?

A DMARC record is a DNS TXT record that tells email receivers how to handle messages that fail authentication. It helps protect your domain from spoofing and phishing attacks while improving email deliverability.
Question Icon

Which DMARC policy should I start with?

We recommend starting with 'p=none' (monitor mode) to collect reports without affecting delivery. Once you're confident in your configuration, gradually move to 'p=quarantine' and then 'p=reject' for maximum protection.
Question Icon

What are rua and ruf email addresses?

RUA (Aggregate Reports) receives daily summaries of authentication results. RUF (Forensic Reports) receives detailed reports of individual failures. Both help you monitor and troubleshoot your email authentication.
Question Icon

Do I need SPF and DKIM before setting up DMARC?

Yes. DMARC relies on SPF (Sender Policy Framework) or DKIM (DomainKeys Identified Mail) to authenticate emails. At least one should be properly configured before implementing DMARC.
Question Icon

How do I add the DMARC record to my DNS?

Log into your DNS provider, add a new TXT record with hostname '_dmarc' and paste the generated record as the value. DNS propagation typically takes 24-48 hours, though it's often much faster.