DMARC Record Generator

Create a valid DMARC record in a few clicks to use it in your DNS

DMARC Configuration

Configure your DMARC policy settings to generate a DNS record

DOMAIN INFORMATION
POLICY SETTINGS
How strictly do you want your DMARC policy to be?
How strictly do you want your DMARC policy to be for your sub-domains?
REPORTING
Where do you want to receive the aggregate reports? (optional)
How often should Aggregate reports be sent?
What percentage of the emails do you want to apply this policy to?
About DMARC: DMARC (Domain-based Message Authentication, Reporting and Conformance) helps protect your domain from email spoofing by working with SPF and DKIM to authenticate emails.

Your DMARC Record

Configure your DMARC policy settings to generate a DNS TXT record that protects your domain from email spoofing and phishing attacks.

How to Use the DMARC Record Generator

Follow these simple steps to generate your DMARC record and enhance your email security

  1. Enter Domain Details

    Input your domain name and select your preferred policy type (None, Quarantine, or Reject) and subdomain policy.

  2. Configure Settings

    Set your reporting email address, reporting interval, and the percentage of emails the policy should apply to.

  3. Generate DMARC Record

    Click generate and your complete DMARC record will be created automatically with the correct syntax and parameters.

  4. Add to DNS

    Copy the generated DMARC record and add it to your DNS as a TXT record to start protecting your domain.

Frequently Asked Questions

Everything you need to know about DMARC and how to use this generator.

DMARC (Domain-based Message Authentication, Reporting, and Conformance) is an email authentication protocol that builds upon SPF and DKIM to provide enhanced protection against email spoofing and phishing attacks. A DMARC record is a DNS TXT record that tells receiving mail servers how to handle emails that fail authentication checks. It allows domain owners to specify policies for unauthenticated emails and receive reports about email authentication activity, giving you complete visibility and control over your domain's email security.
DMARC is essential for protecting your brand and email reputation. Without DMARC, cybercriminals can easily impersonate your domain to send phishing emails, leading to fraud, data breaches, and damage to your brand reputation. DMARC not only prevents unauthorized use of your domain but also provides detailed reports showing who is sending emails on behalf of your domain. Major email providers like Gmail and Yahoo now require DMARC for bulk senders, making it crucial for maintaining high email deliverability rates and protecting your customers from scams.
Our DMARC Record Generator simplifies the process of creating a valid DMARC record. Simply enter your domain name, select your policy preferences (none, quarantine, or reject), configure your subdomain policy, specify where you want to receive reports, set the reporting interval, and choose what percentage of emails the policy should apply to. The generator then automatically creates a properly formatted DMARC record with correct syntax that you can immediately add to your DNS. No technical expertise required—the tool handles all the complex formatting for you.
Start with "none" policy for monitoring without affecting email delivery—this lets you collect data and identify legitimate senders. Once you have verified your setup and reviewed reports for a few weeks, move to "quarantine" to send suspicious emails to spam folders. Finally, implement "reject" policy to block all unauthenticated emails completely. This gradual approach prevents accidentally blocking legitimate emails while you fine-tune your email authentication setup.
DMARC primarily prevents others from spoofing your domain rather than reducing spam you receive. However, it significantly improves your email deliverability, which means your legitimate emails are less likely to be marked as spam by recipient servers. When you implement DMARC with a strict policy (quarantine or reject), emails that fail authentication from your domain will be blocked or quarantined, protecting your recipients from phishing attempts using your domain. This protects your brand reputation and ensures that emails genuinely from your domain are trusted and delivered to inboxes instead of spam folders.
Yes, you should have SPF and DKIM properly configured before implementing DMARC. DMARC builds on top of these authentication methods to provide an additional layer of protection. SPF verifies which mail servers are authorized to send email for your domain, while DKIM adds a digital signature to your emails. DMARC then checks these authentication methods and tells receiving servers what to do with emails that fail these checks. Without SPF and DKIM in place, DMARC cannot function properly and may cause delivery issues.