DMARC Policy Builder

Create DMARC policies with alignment options, reporting addresses, and failure handling configuration.

Domain Configuration

Domain:

Policy Configuration

Policy (p):

Monitor only - no action taken on failed emails

Percentage (pct):

100%

Advanced Options

Subdomain Policy (sp):

Authentication Alignment

DKIM Alignment (adkim):

Relaxed - domain and subdomains match

SPF Alignment (aspf):

Relaxed - domain and subdomains match

Reporting Configuration

Reporting Email (rua):

Forensic Email (ruf):

Report Interval (ri):

Failure Reporting Options (fo):

0: Generate reports if both SPF and DKIM fail 1: Generate reports if either SPF or DKIM fail d: Generate reports if DKIM fails s: Generate reports if SPF fails

Generated DMARC Record

v=DMARC1; p=none; fo=0

DNS TXT Record:

_dmarc.example.com. IN TXT "v=DMARC1; p=none; fo=0"

Policy Validation

Record Length: 22/255 chars

Status: Valid

DMARC policy is valid and ready to deploy!

Deployment Guide

Start with p=none to monitor current email authentication status
Analyze DMARC reports to identify legitimate vs malicious sources
Configure SPF and DKIM for all legitimate sending sources
Gradually increase to p=quarantine with low percentage (pct=25)
Monitor for false positives and adjust alignment if needed
Increase percentage gradually (50%, 75%, 100%)
Finally move to p=reject when confident in configuration

Example Policies