DMARC Policy Checker

Analyze DMARC (Domain-based Message Authentication, Reporting & Conformance) policies. Check policy configuration, alignment settings, and identify potential security issues.

DMARC Examples

DMARC Policy Check

Domain Name

Understanding DMARC

DMARC Policies

none: Monitor mode - collect data but take no action on failures

quarantine: Mark suspicious messages, often sent to spam folder

reject: Reject non-compliant messages outright (strongest security)

Alignment Modes

Relaxed (r): Allows organizational domain matching (default)

Strict (s): Requires exact domain matching (more secure)

Reporting Types

Aggregate (RUA): Daily summary reports of DMARC activity
Forensic (RUF): Real-time failure reports with message samples

Best Practices

Start with p=none to monitor before enforcement
Gradually increase to p=quarantine then p=reject
Set up aggregate reporting to monitor DMARC activity
Use strict alignment for enhanced security when possible
Consider subdomain policy for comprehensive coverage

NetoStack

DMARC Policy Checker

DMARC Examples

google.com

github.com

microsoft.com

paypal.com

amazon.com

salesforce.com