DMARC Policy Checker
Analyze DMARC (Domain-based Message Authentication, Reporting & Conformance) policies
DMARC Examples
DMARC Policy Check
Understanding DMARC
DMARC Policies
none: Monitor mode - collect data but take no action on failures
quarantine: Mark suspicious messages, often sent to spam folder
reject: Reject non-compliant messages outright (strongest security)
Alignment Modes
Relaxed (r): Allows organizational domain matching (default)
Strict (s): Requires exact domain matching (more secure)
Reporting Types
- Aggregate (RUA): Daily summary reports of DMARC activity
- Forensic (RUF): Real-time failure reports with message samples
Best Practices
- Start with p=none to monitor before enforcement
- Gradually increase to p=quarantine then p=reject
- Set up aggregate reporting to monitor DMARC activity
- Use strict alignment for enhanced security when possible
- Consider subdomain policy for comprehensive coverage