Cloudflare's DMARC Management is part of its extensive suite of internet security and performance services. It leverages their global network to provide DMARC reporting and enforcement. While it's integrated into a broader platform, its DMARC-specific features are designed to offer foundational protection against email impersonation, benefiting from Cloudflare's general strength in DNS and edge security.
We found that the DMARC reporting aspect is straightforward, allowing us to monitor DMARC aggregate (RUA) and forensic (RUF) reports. The platform primarily focuses on helping users achieve DMARC enforcement, which means moving from a monitoring policy (p=none) to quarantine or reject policies. Given its beta status, we anticipate more features will be added over time.
DMARC Expert offers a more specialized and hands-on approach to DMARC. Their platform provides a DMARC reports analyzer with features geared towards active deployment and maintenance. Beyond just reporting, they emphasize expert-driven analysis and continuous surveillance of DMARC, SPF, and DKIM records, which includes alerts for changes.
A standout feature is their "Hosted SPF" and "Hosted BIMI" solutions, simplifying complex DNS record management. They also incorporate AI-alerts for behavior-based anomaly detection and an IP blacklist (or blocklist) check. This targeted focus means they provide a deep dive into email deliverability and security specifically from a DMARC perspective, often bundled with consulting and takedown services.
How easy is each product to use
User experience
Cloudflare's dashboard is generally intuitive and well-organized, especially if you're already familiar with their ecosystem. Integrating DMARC management often involves simply adding a DNS record and configuring report destinations. For users accustomed to Cloudflare's interface, navigating the DMARC section feels consistent with their broader security and performance tools.
However, for those new to Cloudflare, the sheer breadth of features can be a bit overwhelming initially. While the DMARC setup itself is straightforward, understanding its place within the larger Cloudflare security framework might require a learning curve. The detailed analytics and logging are powerful, but sometimes users find that deep dives into specific issues require extensive navigation.
DMARC Expert's SaaS platform is designed with a direct focus on DMARC, which can make it feel more specialized and less cluttered for users solely interested in email authentication. We found the DMARC reports analyzer to be comprehensive, presenting data clearly with a focus on actionable insights. The integration of expert-written analysis directly within the platform is a unique value proposition, providing immediate context to your DMARC data.
The user experience benefits from a less sprawling interface compared to multi-faceted platforms. While the depth of DMARC-specific features is high, the overall navigation is streamlined. However, the platform's more hands-on, consulting-heavy approach means that optimal use might require engaging with their expert team, especially for complex deployments or fraud mitigation efforts.
Which product has the best support
Support
Cloudflare offers a tiered support model, with the level of support depending heavily on your plan. Free and lower-tier plans primarily rely on extensive documentation, community forums, and email tickets. While the documentation is vast, and many common issues can be resolved there, obtaining timely, personalized technical support can be a challenge for non-enterprise users.
We've observed feedback indicating that support responses can sometimes be slow, and in complex scenarios, it can be difficult to get to a resolution without significant back-and-forth. This is a common theme with large-scale providers, where personalized attention often comes at a premium. For DMARC-specific issues, this can mean a longer time to diagnosis and resolution if the documentation doesn't cover your exact problem.
DMARC Expert prides itself on a more hands-on, expert-led support model, integrating consulting directly into their offerings. Their DMARC Premium plan includes Webex sessions for support, while Enterprise and MSSP plans offer tailored support levels and continuous surveillance. This approach is well-suited for organizations that prefer direct engagement with DMARC specialists.
This model contrasts with purely self-service platforms. The availability of dedicated experts for deployment, maintenance, and analysis means that users can get direct assistance for complex DMARC challenges. While this personalized support is a significant advantage, it's also a more integrated service model rather than on-demand technical support in the traditional sense, often coming with higher costs.
Who should use each product
Suitability
Cloudflare's DMARC Management is best suited for organizations already utilizing their broader suite of services, or those looking for a DMARC solution as part of a comprehensive web security and performance strategy. Its ease of integration within the Cloudflare ecosystem makes it ideal for businesses that prioritize a unified platform.
For SMBs, Cloudflare offers a compelling free tier for its general services, making DMARC an accessible addition. Enterprises can benefit from its scale and global network, particularly when DMARC is part of a larger security posture. While Cloudflare has an extensive partner program, DMARC-specific MSP (managed service provider) capabilities might be less explicit than specialized DMARC tools.
DMARC Expert is highly suitable for organizations that need dedicated DMARC expertise and hands-on guidance. SMBs can benefit from the DMARC Premium plan which includes direct support, accelerating their path to enforcement. Mid-market and enterprise companies, especially those with complex email infrastructures or high-value brands, will find value in the DMARC Enterprise and expert consulting services.
Notably, DMARC Expert offers a specific DMARC MSSP plan, making it an excellent choice for managed service providers looking to offer DMARC services to their clients. Their focus on detection, neutralization of fraudulent domains, and continuous surveillance caters to businesses prioritizing deep DMARC security and professional assistance over a pure self-service model.
How does Cloudflare compare with DMARC Expert?
DMARC report analysis
Analysis of DMARC aggregate and forensic reports to identify email senders.
Source detection
Identifies legitimate and illegitimate email sending sources.
Forward detection
Identifies email forwarding chains that can impact DMARC authentication.
Spoof detection
Detects malicious email spoofing attempts.
Explicitly mentioned as 'Spoofed email address detection'.
Notifications and alerts
Receiving alerts for DMARC policy changes or suspicious activity.
Includes alerts for SPF/DKIM/DMARC record changes and AI-alerts for anomalies.
Reporting
Comprehensive reports on DMARC compliance and email authentication.
Expert analysis reports are integrated.
API
Programmatic access for integration with other systems.
Available as part of their broader platform for automation.
No public API specifically for DMARC reporting features mentioned.
Multi-tenancy
Ability to manage multiple client domains from a single dashboard.
Supported within their broader platform, but not DMARC-specific.
Dedicated MSSP plan with a multi-user management dashboard.
SPF flattening
Helps manage SPF record limits.
Not explicitly offered as a DMARC feature.
Offered as 'Hosted SPF'.
Hosted DMARC
Managed DMARC record hosting.
Managed through their DNS service.
Included in DMARC deployment services.
BIMI
Support for Brand Indicators for Message Identification.
Supported via DNS records.
Offered as 'Hosted BIMI'.
MTA-STS/TLS-RPT
Support for Mail Transfer Agent Strict Transport Security and TLS Reporting.
Available as part of Cloudflare's security suite.
Not explicitly mentioned in DMARC offerings.
Blocklists and reputation
Monitoring your domain and IP against email blocklists.
Not an explicit feature for your IPs in their DMARC offering.
Includes 'IP blacklist check (blocklist check)'.
AI copilot
AI-powered assistance for DMARC analysis and recommendations.
Not explicitly advertised for DMARC.
Features 'Behavior-based anomaly detection (AI-alerts)'.
DNS monitoring
Monitors changes to critical DNS records for email.
Inherent in their DNS service.
Monitors changes of SPF, DKIM, and DMARC records with alerts.
Self hostable
Option to host the DMARC solution on your own infrastructure.
Free trial/free tier
Availability of a free version or trial period.
DMARC Management is currently in free beta.
No explicit free trial or tier for DMARC reports analysis.
Drawbacks and what to watch out for
Cloudflare's main drawbacks revolve around its support experience, particularly for lower-tier customers, and the potential for new users to feel overwhelmed by its extensive feature set. DMARC Expert, on the other hand, doesn't have widely available public reviews, making it harder to gauge common user complaints, but its model relies heavily on direct engagement, which may not suit all users.
We have pulled the average ratings from G2 for each product, and also included the most recent negative reviews for each product in full. Positive reviews tend to have less detail and have a higher chance of being fraudulent, so negative reviews are a better signal for your decision.
4.5 / 5(561)
0 / 5(0)
Horrible Support and Billing - They run with your money and don't care to get billing correct
0.0 / 5
What do you like best about Cloudflare Application Security and Performance?
Ease of deployment, dashboard and configurations for the WAF, Cache, and other features are top tier with ease, settings, and logging. Just don't have an issue with them or you're on your own. Also, don't keep a credit card on file or they'll bill you for their mistakes.
What do you dislike about Cloudflare Application Security and Performance?
Customer support and billing. Their support does not read what you have to say but rather comes in with their own interpretation of what has happened and forces their views on your issue rather than trying to understand exactly what is happening. On two occassions in the last few months I have had this happen when I encountered an issue with the core product and their billing.
The billing should be detailed further as it is sketchy business practices. Back in April they changed their billing software and charged me incorrectly for a month as it included the previous month as well (which I already paid). I brought this to their attention and the billing support assured me that it was not a problem. Come last week, they limited my account as I "had unpaid biling" so I contacted them again and brought attention to this wrong invoice that they never corrected. Come yesterday, they just charged my credit card on file without my authorization or explanination of what is going on. I've replied to the open ticket and created a new ticket and no one is answering.
I don't want to be a drama case but this is ridiculous to have been charged something from months ago and not be given an explanation.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
Improve the security and performance of our websites/applications. Their configurable/customizable WAF, CDN/Caching, bot mitigation, and DDoS protection accomplish this for our websites/applications.
Jim M.
Owner Small-Business (50 or fewer emp.)
No G2 reviews
G2 is the most popular review platform for DMARC products, so this is a strong signal that this product is not popular.
Support very unresponsive. Not understanding P1 urgency. Delayed project 3 whole days.
0.0 / 5
What do you like best about Cloudflare Application Security and Performance?
The website is intuitive, implementation steps are straightforward. It has numerous features, and they are indeed needed by a web app.
What do you dislike about Cloudflare Application Security and Performance?
If your implementation goes well, it's fine. However, if you are in trouble, the support doc is useless. You pay for the pro plan to try to get some technician support. No one cares about your business or service, even if you identify it as a P1 urgency. My project was down and could not get anyone to help me when I identified it as a high-impact ticket.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
The ticket support system is horrible. No technicians provide you with timely manner answers and support. Not worth the price.
Andrew Z.
Small-Business (50 or fewer emp.)
WAF is good, but so many half baked side features
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
The WAF is pretty industry standard. Its not too slow, gets regular updates, easy to deploy and cheap
What do you dislike about Cloudflare Application Security and Performance?
The side features are just trash. Its clear they have been shipped and dropped.
Cloudflare Bot Detection should not exist. Its not even funny how easy it is to bypass.
Page Shield is a joke, their API security is a joke.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
OWASP top 10
Verified User in Computer Software
Small-Business (50 or fewer emp.)
Love the product- support could use some work
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
Super easy to use. Very developer friendly. Tons of value for price. Undoubtedly #1 in WAF.
What do you dislike about Cloudflare Application Security and Performance?
Could use some better support. No direct channels for tech questions.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
It's providing great security for our web app.
Verified User in Computer Software
Mid-Market (51-1000 emp.)
Don't Pay for Support
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
In general, cloudflare is really easy to navigate, especially for simple DNS and domain management. Unless you have a complicated setup, I find it easy enough to move a domain or simply manage DNS for most sites.
What do you dislike about Cloudflare Application Security and Performance?
Their support is terrible. Had an issue with a client's DNS and the person I was talking to clearly didn't have a clue what they were talking about. They took so long between answers, it seemed like they were just asking someone else. Ultimately, they were of no help and we were out the money we paid to have live support.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
Makes DNS and Security easy for most websites and domains.
Verified User in Marketing and Advertising
Small-Business (50 or fewer emp.)
Pricing
Cloudflare's DMARC Management is currently in a free beta phase, while DMARC Expert offers tiered annual subscriptions that include varying levels of expert support and advanced features.
Small
Up to 10k emails / month
Free beta (waitlist)
€1260/year (DMARC Premium)
Medium
Up to 100k emails / month
Contact for pricing
€1260/year (DMARC Premium)
Large
Up to 1 million emails / month
Contact for pricing
From €5500/year (DMARC Enterprise)
Enterprise
Over 1 million emails / month
Contact for pricing
From €5500/year (DMARC Enterprise)
Suped hard sell incoming!
Still not satisfied with Cloudflare or DMARC Expert?
4.5 / 5(561)
