Cloudflare's DMARC management is an extension of their comprehensive web security platform. It provides core DMARC reporting and enforcement capabilities, allowing us to monitor email authentication for our domains alongside other Cloudflare services like WAF, CDN, and DDoS protection.
The strength here lies in the integrated ecosystem. While DMARC is relatively new to Cloudflare, it benefits from their global network and unified dashboard, making it a convenient option for organizations already heavily invested in Cloudflare's broader offerings. We find the analysis tools sufficient for basic DMARC needs.
Fraudmarc Community Edition (CE) is a purely DMARC-focused solution, offering an open-source, self-hosted platform for processing and visualizing DMARC reports. It's designed for technical users who want complete control over their data and infrastructure, without vendor lock-in or recurring costs.
This edition provides the fundamental tools to analyze DMARC data, detect email sources, and identify potential spoofing attempts. What it lacks in advanced, proprietary features, it makes up for in transparency and the ability to customize or extend the platform to specific needs, provided you have the in-house expertise.
How easy is each product to use
User experience
Cloudflare's DMARC management integrates seamlessly into their existing dashboard, which is a major plus for current users. For those familiar with Cloudflare's interface, navigating the DMARC settings and reports is relatively intuitive.
However, the sheer breadth of Cloudflare's services means the dashboard can sometimes feel overwhelming. While basic DMARC monitoring is straightforward, delving into more granular configurations or troubleshooting can still require a learning curve, especially if you're new to the Cloudflare ecosystem.
Fraudmarc Community Edition, being an open-source and self-hosted solution, offers a user experience tailored for the technically proficient. There's no fancy SaaS dashboard, but rather a robust, functional interface that requires installation and configuration on your own servers.
The setup process involves command-line operations and a deep understanding of server administration. For those comfortable with this level of technical involvement, the experience offers unparalleled control. For others, it can be a steep learning curve, requiring significant time and effort to get up and running.
Which product has the best support
Support
Cloudflare offers tiered support, with free users relying primarily on their extensive documentation, community forums, and a robust knowledge base. Paid plans, particularly enterprise, come with more direct and dedicated support channels, including email and sometimes phone support.
Our experience, and what's often reflected in reviews, suggests that support responsiveness and expertise can vary, especially for non-critical issues on lower-tier plans. While their documentation is vast, getting timely, personalized assistance for complex DMARC-specific issues might require patience.
Fraudmarc Community Edition offers support exclusively through its community forum. As an open-source project, users are encouraged to help each other, share solutions, and contribute to the project's knowledge base. This model thrives on collective intelligence.
There is no official direct support from Fraudmarc for the Community Edition. This means that if we encounter a problem, we must rely on the community or our own technical expertise to resolve it. This is a crucial consideration for organizations that require guaranteed service level agreements (SLAs) or dedicated technical assistance.
Who should use each product
Suitability
Cloudflare DMARC is ideal for organizations already leveraging Cloudflare's vast suite of web performance and security services. It's a natural fit for those seeking to consolidate vendors and manage email security alongside their web infrastructure within a single platform.
This solution is highly suitable for enterprise clients who value integrated security, MSPs managing a portfolio of Cloudflare-protected clients, and SMBs already using Cloudflare's free or paid plans for DNS and CDN, who wish to add DMARC without introducing another dashboard.
Fraudmarc Community Edition is best suited for individuals or organizations with strong in-house technical capabilities and a desire for absolute control over their DMARC reporting infrastructure. It's a perfect choice for those who are comfortable with self-hosting and managing open-source software.
It's less suitable for typical enterprise environments that demand managed services, dedicated support, and robust feature sets out-of-the-box. For MSPs, it could work if they have a dedicated DevOps team capable of deploying and maintaining it for clients. Technically savvy SMBs or individual developers looking for a no-cost solution will find it appealing.
How does Cloudflare compare with Fraudmarc Community Edition?
DMARC report analysis
Ability to process and display DMARC aggregate and forensic reports.
Source detection
Identifies legitimate and illegitimate sending sources.
Forward detection
Distinguishes between direct mail and forwarded mail.
Spoof detection
Identifies email spoofing attempts.
Notifications and alerts
Automated alerts for DMARC policy changes or anomalies.
Requires custom setup for alerts
Reporting
Customizable and aggregated reporting features.
Basic, raw data focused reporting
API
Programmatic access to DMARC data and configuration.
Not available as a dedicated API
Multi-tenancy
Manages DMARC for multiple domains or clients under one account.
Not designed for multi-tenant environments
SPF flattening
Reduces SPF lookup count to avoid exceeding the 10-lookup limit.
As part of broader email security
Mentioned in paid Fraudmarc products only
Hosted DMARC
Service provider hosts and manages DMARC records.
Self-hosted solution
BIMI
Support for Brand Indicators for Message Identification.
MTA-STS/TLS-RPT
Support for Mail Transfer Agent Strict Transport Security and TLS Reporting.
Blocklists and reputation
Monitors domain and IP reputation on email blocklists.
As part of Cloudflare's broader security offerings
Not a primary DMARC CE feature
AI copilot
AI-powered assistant for insights and management.
DNS monitoring
Monitors DNS records for unauthorized changes or issues.
Core Cloudflare functionality
Self hostable
Can be installed and run on user's own servers.
Free trial/free tier
Availability of a free version or trial period.
Beta program for DMARC, free for other services
Completely free open-source solution
Drawbacks and what to watch out for
When considering Cloudflare, potential drawbacks include inconsistent support quality, particularly for free or lower-tier users, and a sometimes overwhelming array of features that can complicate advanced configurations. Fraudmarc Community Edition's main hurdle is its requirement for significant technical expertise, as it's a completely self-managed and community-supported solution, lacking the convenience and dedicated assistance of commercial products.
We have pulled the average ratings from G2 for each product, and also included the most recent negative reviews for each product in full. Positive reviews tend to have less detail and have a higher chance of being fraudulent, so negative reviews are a better signal for your decision.
4.5 / 5(561)
0 / 5(0)
Horrible Support and Billing - They run with your money and don't care to get billing correct
0.0 / 5
What do you like best about Cloudflare Application Security and Performance?
Ease of deployment, dashboard and configurations for the WAF, Cache, and other features are top tier with ease, settings, and logging. Just don't have an issue with them or you're on your own. Also, don't keep a credit card on file or they'll bill you for their mistakes.
What do you dislike about Cloudflare Application Security and Performance?
Customer support and billing. Their support does not read what you have to say but rather comes in with their own interpretation of what has happened and forces their views on your issue rather than trying to understand exactly what is happening. On two occassions in the last few months I have had this happen when I encountered an issue with the core product and their billing.
The billing should be detailed further as it is sketchy business practices. Back in April they changed their billing software and charged me incorrectly for a month as it included the previous month as well (which I already paid). I brought this to their attention and the billing support assured me that it was not a problem. Come last week, they limited my account as I "had unpaid biling" so I contacted them again and brought attention to this wrong invoice that they never corrected. Come yesterday, they just charged my credit card on file without my authorization or explanination of what is going on. I've replied to the open ticket and created a new ticket and no one is answering.
I don't want to be a drama case but this is ridiculous to have been charged something from months ago and not be given an explanation.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
Improve the security and performance of our websites/applications. Their configurable/customizable WAF, CDN/Caching, bot mitigation, and DDoS protection accomplish this for our websites/applications.
Jim M.
Owner Small-Business (50 or fewer emp.)
No G2 reviews
G2 is the most popular review platform for DMARC products, so this is a strong signal that this product is not popular.
Support very unresponsive. Not understanding P1 urgency. Delayed project 3 whole days.
0.0 / 5
What do you like best about Cloudflare Application Security and Performance?
The website is intuitive, implementation steps are straightforward. It has numerous features, and they are indeed needed by a web app.
What do you dislike about Cloudflare Application Security and Performance?
If your implementation goes well, it's fine. However, if you are in trouble, the support doc is useless. You pay for the pro plan to try to get some technician support. No one cares about your business or service, even if you identify it as a P1 urgency. My project was down and could not get anyone to help me when I identified it as a high-impact ticket.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
The ticket support system is horrible. No technicians provide you with timely manner answers and support. Not worth the price.
Andrew Z.
Small-Business (50 or fewer emp.)
WAF is good, but so many half baked side features
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
The WAF is pretty industry standard. Its not too slow, gets regular updates, easy to deploy and cheap
What do you dislike about Cloudflare Application Security and Performance?
The side features are just trash. Its clear they have been shipped and dropped.
Cloudflare Bot Detection should not exist. Its not even funny how easy it is to bypass.
Page Shield is a joke, their API security is a joke.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
OWASP top 10
Verified User in Computer Software
Small-Business (50 or fewer emp.)
Love the product- support could use some work
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
Super easy to use. Very developer friendly. Tons of value for price. Undoubtedly #1 in WAF.
What do you dislike about Cloudflare Application Security and Performance?
Could use some better support. No direct channels for tech questions.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
It's providing great security for our web app.
Verified User in Computer Software
Mid-Market (51-1000 emp.)
Don't Pay for Support
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
In general, cloudflare is really easy to navigate, especially for simple DNS and domain management. Unless you have a complicated setup, I find it easy enough to move a domain or simply manage DNS for most sites.
What do you dislike about Cloudflare Application Security and Performance?
Their support is terrible. Had an issue with a client's DNS and the person I was talking to clearly didn't have a clue what they were talking about. They took so long between answers, it seemed like they were just asking someone else. Ultimately, they were of no help and we were out the money we paid to have live support.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
Makes DNS and Security easy for most websites and domains.
Verified User in Marketing and Advertising
Small-Business (50 or fewer emp.)
Pricing
Cloudflare offers DMARC management within its broader platform, currently in a free beta phase, while Fraudmarc Community Edition is a completely free, self-managed open-source solution.
Small
Up to 10k emails / month
Contact for pricing
Free
Medium
Up to 100k emails / month
Contact for pricing
Free
Large
Up to 1 million emails / month
Contact for pricing
Free
Enterprise
Over 1 million emails / month
Contact for pricing
Free
Suped hard sell incoming!
Still not satisfied with Cloudflare or Fraudmarc Community Edition?
4.5 / 5(561)
