DMARC Record Check

This tool checks whether your domain publishes a DMARC record and validates common configuration issues.

What is DMARC?

DMARC (Domain-based Message Authentication, Reporting & Conformance) helps protect your domain against email spoofing by telling receivers how to handle messages that fail SPF/DKIM alignment.

What this tool checks

Looks for a TXT record at _dmarc.<domain>
Ensures v=DMARC1 exists
Validates policy tag p=none|quarantine|reject
Warns if rua=mailto:... is missing (recommended)
Checks pct range (0–100) and basic alignment tags (aspf, adkim)
Detects multiple DMARC records (DMARC requires exactly one)

Status meanings

valid – DMARC record found and passes basic validation
invalid – DMARC record found, but has errors (e.g., missing/invalid p)
missing – no DMARC record found at _dmarc
multiple – more than one DMARC record found (should be exactly one)

Example DMARC records

Monitor only (recommended start):

v=DMARC1; p=none; rua=mailto:dmarc-reports@example.com; aspf=r; adkim=r;

Stricter enforcement:

v=DMARC1; p=quarantine; rua=mailto:dmarc-reports@example.com; pct=100; aspf=s; adkim=s;

Best practice: start with p=none, monitor reports, then move to quarantine and eventually reject.

Notes & limitations

This is a “basic validation” tool, not a complete deliverability audit.
Some receivers require report mailboxes to be authorized if using a different domain.

← Back to tools