Is Cloudflare DMARC suitable for small businesses?

Cloudflare DMARC is currently in beta, but its integration with Cloudflare's broader services makes it convenient for small businesses already using their platform for DNS or web security. If you are seeking a standalone, highly focused DMARC solution without other Cloudflare services, it might be more robust to use a dedicated DMARC provider.

Does Fraudmarc offer features beyond basic DMARC reporting?

Yes, Fraudmarc specializes in email security and offers advanced features such as SPF flattening, hosted DMARC, BIMI, and MTA-STS/TLS-RPT support. These capabilities go beyond basic DMARC reporting to provide comprehensive email authentication and brand protection.

How does support compare between Cloudflare and Fraudmarc?

Cloudflare's support can vary, with more comprehensive support available on higher-tier plans. Fraudmarc, being a specialized provider, is likely to offer expert-level support focused specifically on DMARC and email authentication, which can be beneficial for complex issues.

Which product is better for an MSP managing multiple client domains?

Both offer multi-tenancy capabilities. Cloudflare provides an integrated platform for managing various web and email security services, which can be efficient for MSPs already using their ecosystem. Fraudmarc offers a highly specialized platform for DMARC, providing deep insights and controls ideal for MSPs focused solely on robust email authentication for their clients.

Is there a free option for DMARC reporting with either provider?

Cloudflare's DMARC Management is currently in beta, allowing users to join a waitlist for free access, but it's not a generally available free tier. Fraudmarc does not publicly advertise a free trial or free tier.

Cloudflare vs Fraudmarc

Choose Cloudflare for robust web security and CDN with DMARC, or Fraudmarc for dedicated DMARC management.

4.5 / 5(561)

Compare to Suped

0 / 5(0)

Compare to Suped

Compare product functionality

Feature set

Cloudflare's DMARC management is an integrated offering within their broader suite of internet infrastructure and security services. It is designed to help organizations secure their email channels by leveraging the extensive network and robust security features Cloudflare is known for, such as DNS management and WAF capabilities. Their DMARC solution provides visibility into email traffic, helping identify legitimate senders and block unauthorized (spoofing) activity.

We found that for users already deeply embedded in the Cloudflare ecosystem, the DMARC solution feels like a natural extension, benefiting from the same dashboard and infrastructure. It focuses on the core DMARC reporting and enforcement aspects, aiming to simplify the process of achieving DMARC compliance and protecting your domain from impersonation. The service aims for ease of setup, particularly for existing Cloudflare DNS users, allowing for rapid deployment.

Fraudmarc specializes exclusively in email security, with a strong emphasis on DMARC, SPF, and DKIM. Their platform provides a comprehensive suite of tools specifically tailored to DMARC report analysis, policy management, and compliance. We noted that Fraudmarc's feature set extends beyond basic reporting, offering advanced capabilities like SPF flattening, hosted DMARC, and detailed forensic data to pinpoint email fraud sources.

The platform is built from the ground up to address complex email authentication challenges, providing granular control and in-depth insights. Fraudmarc aims to equip users with all the necessary tools to achieve DMARC enforcement swiftly and effectively, including support for emerging standards like BIMI and MTA-STS/TLS-RPT. Their focus allows for a deeper, more specialized approach to email security, potentially appealing to organizations with specific or advanced DMARC requirements.

How easy is each product to use

User experience

Cloudflare's user experience for DMARC management is largely consistent with its overall platform design, which can be a double-edged sword. For users already familiar with the Cloudflare dashboard for DNS, WAF, or CDN services, integrating DMARC feels seamless and intuitive. The interface is generally clean and modern, allowing us to navigate through various security and performance settings, including DMARC reports and configurations.

However, for new users or those primarily interested in DMARC without prior Cloudflare exposure, the sheer breadth of the platform can be overwhelming. While DMARC setup itself is straightforward, understanding its context within Cloudflare's vast ecosystem might require a learning curve. The DMARC reporting interface provides clear aggregations, but detailed forensic analysis may require deeper dives into Cloudflare's broader logging and analytics tools.

Fraudmarc, with its specialized focus on email authentication, offers a user experience that is tailored specifically for DMARC, SPF, and DKIM management. We found the dashboard to be highly focused, presenting DMARC reports, analytics, and policy controls in a clear, organized manner. The interface is designed to make complex email authentication data understandable and actionable, even for users who may not be DMARC experts.

Its dedicated nature means there is less clutter from unrelated services, making it easier for us to find exactly what we need for DMARC configuration and monitoring. The guided setup processes and detailed explanations for each DMARC component help streamline the user journey from initial setup to full enforcement. This specialized approach results in a highly efficient workflow for email security professionals and those prioritizing DMARC compliance.

Which product has the best support

Support

Cloudflare offers a multi-tiered support structure, ranging from extensive documentation and a community forum for free and lower-tier users to dedicated support for enterprise clients. We've observed that the quality and responsiveness of support can vary significantly depending on the service tier. For DMARC, which is currently in beta, users generally rely on community resources and initial beta support channels, which may not always be instantaneous.

While Cloudflare's documentation is comprehensive, some users report challenges with timely and personalized assistance, especially for complex issues or billing discrepancies, as highlighted in G2 reviews for their broader application security products. Access to direct technical support often requires a higher-tier plan, meaning that for critical DMARC-related issues, rapid resolution might depend on your overall Cloudflare subscription level.

Fraudmarc, as a specialized email security provider, tends to offer more focused and expert support for DMARC-related issues. Our experience suggests that specialized providers often have support teams with deep knowledge in their specific domain, leading to more accurate and efficient problem-solving for DMARC, SPF, and DKIM challenges.

While specific details on their support tiers are not publicly available, companies like Fraudmarc typically provide direct access to email security specialists. This can be a significant advantage when dealing with the intricacies of DMARC implementation and troubleshooting, ensuring that you receive guidance from professionals well-versed in the nuances of email authentication. For critical email deliverability concerns, this specialized expertise can be invaluable.

Who should use each product

Suitability

Cloudflare's DMARC Management is best suited for organizations already utilizing Cloudflare for their DNS, CDN, or web security needs. It offers a convenient, integrated solution, especially for enterprises and mid-market companies seeking to consolidate their internet infrastructure and security under one vendor. SMBs can also benefit, particularly if they are already on Cloudflare's free or lower-tier plans for other services.

MSPs would find Cloudflare appealing for its comprehensive platform, allowing them to manage multiple client domains for web performance and security, with DMARC as another managed service. The scalability and global reach of Cloudflare make it a strong choice for any organization that prioritizes a unified security posture across web and email, benefiting from a single pane of glass for many internet services.

Fraudmarc is an excellent fit for organizations, regardless of size, that prioritize dedicated and in-depth email authentication management. SMBs seeking robust DMARC enforcement without the complexity of a broader web security suite would find its focused approach highly beneficial. Enterprises with advanced email security requirements or those dealing with persistent email fraud issues might leverage Fraudmarc's specialized tools and expertise.

For MSPs, Fraudmarc offers a powerful platform to manage DMARC for multiple clients, providing comprehensive reporting and enforcement capabilities specifically designed for email. This dedicated focus ensures that email security remains a primary concern, rather than a feature bundled into a larger, potentially overwhelming platform. Organizations that need granular control over their DMARC policies and forensic data will find Fraudmarc's specialization advantageous.

How does Cloudflare compare with Fraudmarc?

DMARC report analysis

Ability to parse and visualize DMARC aggregate reports.

Source detection

Identify and classify all email sending sources.

Forward detection

Detect and handle email forwarding to prevent DMARC failures.

Spoof detection

Identify and alert on unauthorized use of your domain.

Notifications and alerts

Automated alerts for DMARC policy changes or threats.

Reporting

Generate various reports on DMARC compliance and traffic.

API

Programmatic access for integration and automation.

Multi-tenancy

Manage DMARC for multiple domains or clients from one account.

SPF flattening

Optimize SPF records to stay within the 10-lookup limit.

Hosted DMARC

Managed DMARC records and reporting by the provider.

BIMI

Support for Brand Indicators for Message Identification.

Beta or upcoming

MTA-STS/TLS-RPT

Support for Mail Transfer Agent-Strict Transport Security and reporting.

Separate product

Blocklists and reputation

Integrates with or offers reputation monitoring/blocklist checks.

Not core DMARC service

AI copilot

AI-powered assistant for DMARC configuration or analysis.

DNS monitoring

Monitors DNS records for health and changes.

General DNS

DMARC-specific DNS

Self hostable

Option to host the DMARC solution on private infrastructure.

Free trial/free tier

Availability of a free plan or trial period.

Beta waitlist only

Drawbacks and what to watch out for

Cloudflare's main drawbacks, particularly for DMARC, revolve around its current beta status and the potentially overwhelming nature of its expansive platform for users solely focused on email security. For Fraudmarc, without public reviews, a significant concern could be a lack of external validation of its user experience and support, although its specialized focus suggests a robust DMARC offering.

We have pulled the average ratings from G2 for each product, and also included the most recent negative reviews for each product in full. Positive reviews tend to have less detail and have a higher chance of being fraudulent, so negative reviews are a better signal for your decision.

4.5 / 5(561)

0 / 5(0)

Horrible Support and Billing - They run with your money and don't care to get billing correct

0.0 / 5

What do you like best about Cloudflare Application Security and Performance? Ease of deployment, dashboard and configurations for the WAF, Cache, and other features are top tier with ease, settings, and logging. Just don't have an issue with them or you're on your own. Also, don't keep a credit card on file or they'll bill you for their mistakes. What do you dislike about Cloudflare Application Security and Performance? Customer support and billing. Their support does not read what you have to say but rather comes in with their own interpretation of what has happened and forces their views on your issue rather than trying to understand exactly what is happening. On two occassions in the last few months I have had this happen when I encountered an issue with the core product and their billing. The billing should be detailed further as it is sketchy business practices. Back in April they changed their billing software and charged me incorrectly for a month as it included the previous month as well (which I already paid). I brought this to their attention and the billing support assured me that it was not a problem. Come last week, they limited my account as I "had unpaid biling" so I contacted them again and brought attention to this wrong invoice that they never corrected. Come yesterday, they just charged my credit card on file without my authorization or explanination of what is going on. I've replied to the open ticket and created a new ticket and no one is answering. I don't want to be a drama case but this is ridiculous to have been charged something from months ago and not be given an explanation. What problems is Cloudflare Application Security and Performance solving and how is that benefiting you? Improve the security and performance of our websites/applications. Their configurable/customizable WAF, CDN/Caching, bot mitigation, and DDoS protection accomplish this for our websites/applications.

Jim M.

Owner Small-Business (50 or fewer emp.)

No G2 reviews

G2 is the most popular review platform for DMARC products, so this is a strong signal that this product is not popular.

Support very unresponsive. Not understanding P1 urgency. Delayed project 3 whole days.

0.0 / 5

What do you like best about Cloudflare Application Security and Performance? The website is intuitive, implementation steps are straightforward. It has numerous features, and they are indeed needed by a web app. What do you dislike about Cloudflare Application Security and Performance? If your implementation goes well, it's fine. However, if you are in trouble, the support doc is useless. You pay for the pro plan to try to get some technician support. No one cares about your business or service, even if you identify it as a P1 urgency. My project was down and could not get anyone to help me when I identified it as a high-impact ticket. What problems is Cloudflare Application Security and Performance solving and how is that benefiting you? The ticket support system is horrible. No technicians provide you with timely manner answers and support. Not worth the price.

Andrew Z.

Small-Business (50 or fewer emp.)

WAF is good, but so many half baked side features

2.5 / 5

What do you like best about Cloudflare Application Security and Performance? The WAF is pretty industry standard. Its not too slow, gets regular updates, easy to deploy and cheap What do you dislike about Cloudflare Application Security and Performance? The side features are just trash. Its clear they have been shipped and dropped. Cloudflare Bot Detection should not exist. Its not even funny how easy it is to bypass. Page Shield is a joke, their API security is a joke. What problems is Cloudflare Application Security and Performance solving and how is that benefiting you? OWASP top 10

Verified User in Computer Software

Small-Business (50 or fewer emp.)

Love the product- support could use some work

2.5 / 5

What do you like best about Cloudflare Application Security and Performance? Super easy to use. Very developer friendly. Tons of value for price. Undoubtedly #1 in WAF. What do you dislike about Cloudflare Application Security and Performance? Could use some better support. No direct channels for tech questions. What problems is Cloudflare Application Security and Performance solving and how is that benefiting you? It's providing great security for our web app.

Verified User in Computer Software

Mid-Market (51-1000 emp.)

Don't Pay for Support

2.5 / 5

What do you like best about Cloudflare Application Security and Performance? In general, cloudflare is really easy to navigate, especially for simple DNS and domain management. Unless you have a complicated setup, I find it easy enough to move a domain or simply manage DNS for most sites. What do you dislike about Cloudflare Application Security and Performance? Their support is terrible. Had an issue with a client's DNS and the person I was talking to clearly didn't have a clue what they were talking about. They took so long between answers, it seemed like they were just asking someone else. Ultimately, they were of no help and we were out the money we paid to have live support. What problems is Cloudflare Application Security and Performance solving and how is that benefiting you? Makes DNS and Security easy for most websites and domains.

Verified User in Marketing and Advertising

Small-Business (50 or fewer emp.)

Pricing

Cloudflare's DMARC Management is currently in beta with no public pricing, while Fraudmarc requires direct contact for pricing details across all potential usage tiers.

Small

Up to 10k emails / month

Beta waitlist

Contact for pricing

Medium

Up to 100k emails / month

Beta waitlist

Contact for pricing

Large

Up to 1 million emails / month

Beta waitlist

Contact for pricing