Log In

If you’ve spent any time in the email space (or software more generally) you will know that there are a raft of strange and cryptic acronyms that come with the territory. They can be misleading, confusing and daunting, particularly for newcomers who just want to set up their SMTP relay and never give it another thought.

We get it: they can put anyone off! But there is hope (and help). Here we answer some questions about DMARC and clear the air. Mystery begone!

Okay, deep breath, the next few sentences might make your head spin.

DMARC stands for Domain-based Message Authentication, Reporting & Conformance.

It is a fancy name for a simple protocol. These are the nuts and bolts of it:

How Does it Help?

Setting up a DMARC policy allows you as an individual or business to more effectively prevent malicious emails.

On a larger scale, DMARC is used by internet service providers (ISPs) to protect their customers’ inboxes.

How Does it Work?

DMARC essentially combines two common authentication protocols – Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM) to help an incoming mail server determine whether an email is legit or not.

DMARC ultimately enables you to decide what to do with incoming emails, allowing you to decide how strict you want your protocols to be. DMARC allows you as the recipient to decide if you want to accept emails, place them in junk, or block them from your servers altogether. You can set these policies based on the SPF/DKIM of the incoming mail.

Where Can I find my DMARC Record?

Don’t worry – you won’t have to do too much digging to find out the DMARC policy of your domain, or the details of the record managed by your ISP provider!

It can be found alongside your Domain Name System (DNS) records, which also include:

You as a business can contact your DNS server administrator and ensure they have added your DMARC record. You can specify how strict or ‘lax’ you want your protocol to be.

Who Uses DMARC?

Not all companies or individuals use DMARC but virtually all ISP providers do in order to keep their users safe. Implementing strict, unambiguous policies for incoming mail is becoming the gold standard in the email industry.

What Are the Benefits?

Show me a DMARC record – I’m intrigued!

You can check Valimail to view the DMARC record of any domain that has one publicly published.

You can also check yourself in your terminal. Type < dig txt _dmarc.smtp2go.net >


If your domain doesn’t contain a text record beginning with “v=DMARC1,” the recipient mail server won’t run a DMARC check. If you don’t have this in your text record it means you don’t have a DMARC policy published.

p=none: The most ‘lax’ DMARC policy command

p=quarantine: This command tells the receiver to divert mail that does not conform to all of the requirements to spam or some other designated folder.

p=reject: The strictest command. It only allows mail verified as signed by a given domain to reach the inbox. All other mail gets denied.


Leave a Reply

Your email address will not be published. Required fields are marked *

Ready for better email delivery?

Try SMTP2GO free for as long as you like:

Try SMTP2GO Free → Paid plans available for over 1,000 emails/month.

Ready for better email delivery?
Try SMTP2GO free for as long as you like:

Try SMTP2GO Free See Pricing