DataHouse Tools

Tool

DMARC: what it is and how it works

A practical DMARC guide for business email: SPF, DKIM, none, quarantine and reject policies, and domain reports.

Glossary

DMARC protects a domain from spoofed sender identities. It works with SPF and DKIM, lets recipients check alignment with the visible sender domain and gives the domain owner reporting and policy control.

Mail tester Check MX, SPF and DMARC together. DMARC tester Review domain policy and reporting. DNS delegation Check NS, SOA and DNSSEC basics. Mail servers Return to the business mail hub.

DMARC: what it is and how it works

DMARC is published as a DNS TXT record under _dmarc.example.com. The policy tells receiving servers whether failing messages should only be reported, quarantined or rejected.

DMARC record basics

Why it matters

This concept affects domain trust, mail delivery, troubleshooting and migration safety.

Where it is configured

The value is published in DNS and should be managed together with the domain operator or DNS platform.

What to check

Check syntax, TTL, old records after migration and consistency with mail or domain services.

Example

Example: v=DMARC1; p=quarantine; rua=mailto:dmarc@example.com; pct=100; adkim=s; aspf=s

Practical check order

  1. Read current DNS. Check what the public DNS currently returns for the relevant name.
  2. Compare with the intended policy. Confirm that the record matches the mail platform or domain design.
  3. Remove stale entries. Old records after migration are a common source of failures.
  4. Retest dependent services. Run mail, DNS, SSL or RDAP checks depending on the record type.

Common mistakes

  • Record added under the wrong DNS name.
  • Old values left after migration or provider change.
  • Long TTL during planned changes.
  • Policy copied from another domain without adapting host names or report addresses.
  • Record changed without checking the services that depend on it.
DMARC SPF DKIM MX TXT DNSSEC

FAQ: DMARC: what it is and how it works

How should I use this DataHouse page?

Use it as a technical checklist and connect it with the relevant diagnostic tools before or after a production change.