DNS Tools DMARC Record Checker

DMARC Record Checker

Free DMARC record checker. View policy, alignment mode, reporting addresses, and protection level for any domain.

MX Checker SPF Checker DKIM Checker DMARC Checker Blacklist Checker DNS Lookup DNS Propagation Reverse DNS What's My IP WHOIS Lookup SSL Checker

Check DMARC Record

Enter a domain name to look up its DMARC policy at _dmarc.domain in real time.

Enter a domain to check its DMARC record

DMARC tells receiving mail servers how to handle emails that fail SPF or DKIM checks, and where to send reports. A strong DMARC policy protects your domain from spoofing.

Email Security
Full DMARC monitoring and email authentication.
HostBible Email Security sets up SPF, DKIM, and DMARC for you and monitors your sending reputation in real time.
Explore Email Security

Frequently Asked Questions

What is DMARC?
DMARC (Domain-based Message Authentication, Reporting and Conformance) is an email authentication policy that builds on SPF and DKIM. It tells receiving mail servers what to do with messages that fail SPF or DKIM checks, and provides a reporting mechanism so domain owners can see who is sending email on their behalf. Without DMARC, even a valid SPF and DKIM setup gives you no control over what happens to unauthenticated messages.
What does p=none mean in a DMARC record?
p=none is a monitoring-only policy. It instructs receiving servers to take no action on messages that fail DMARC, but to still send reports back to the address specified in your rua tag. This is the recommended starting point when you first implement DMARC, as it lets you review reports and identify all legitimate sending sources before moving to an enforced policy. It provides no protection against spoofing on its own.
What is DMARC alignment?
DMARC alignment means the domain in the From: header of an email must match the domain used in the SPF or DKIM check. Strict alignment (aspf=s or adkim=s) requires an exact domain match. Relaxed alignment (the default) allows a match with the organisational domain, so mail.example.com would align with example.com. A message passes DMARC if it passes either SPF alignment or DKIM alignment.
What is the difference between p=quarantine and p=reject?
Both policies enforce DMARC, but with different levels of aggression. p=quarantine instructs receiving servers to deliver messages that fail DMARC to the spam or junk folder rather than the inbox. p=reject instructs receiving servers to refuse the message entirely during the SMTP session, so it never reaches the recipient at all. p=reject provides the strongest protection against domain spoofing and is the recommended final target once you have confirmed all legitimate mail passes DMARC.