While Cloudflare is renowned for its vast suite of internet security and performance services, their DMARC offering is more recent and integrated into their broader ecosystem. We found that it provides essential DMARC reporting and monitoring capabilities, leveraging Cloudflare's extensive network to process email authentication data. However, its DMARC-specific features, though functional, might not be as deeply specialized as those found in dedicated DMARC platforms.
We observed that the DMARC reports are presented within the familiar Cloudflare dashboard, making it convenient for existing users. It effectively helps identify legitimate and fraudulent email sources and offers a clear pathway to DMARC enforcement. For organizations already heavily invested in the Cloudflare environment, this integration provides a streamlined approach to DMARC implementation and oversight, minimizing the need for additional vendor management.
GoDMARC positions itself as a specialized DMARC reporting and management platform, and our experience confirms this focus. It offers a comprehensive set of tools specifically designed for email authentication, including detailed aggregate (RUA) and forensic (RUF) report analysis. The platform excels in presenting complex DMARC data in an accessible manner, allowing for quick identification of issues and misconfigurations.
From our testing, GoDMARC provides robust capabilities for identifying sending sources, analyzing SPF and DKIM alignment, and generating actionable insights to guide DMARC policy adjustments. Its specialized nature means that every feature is geared towards improving email deliverability and combating spoofing, often offering granular controls and advanced filtering options that are highly beneficial for managing email security postures effectively.
How easy is each product to use
User experience
For those already familiar with the Cloudflare dashboard, integrating DMARC management feels intuitive. The interface maintains Cloudflare's consistent design language, which is generally clean and well-organized. We found the DMARC reports and analytics were presented clearly within the existing menu structure, allowing for easy navigation between DMARC data and other Cloudflare services like DNS or WAF.
However, for users new to Cloudflare or those expecting a standalone DMARC-focused interface, the sheer breadth of Cloudflare's offerings can be initially overwhelming. While the DMARC section itself is straightforward, the broader context of the Cloudflare console might require a learning curve. We appreciated the unified experience, but acknowledge that DMARC is one cog in a much larger machine here.
GoDMARC offers a dashboard specifically tailored for DMARC management, which we found to be a significant advantage for focused users. The layout prioritizes DMARC-related metrics, making it easy to see authentication rates, sources, and threats at a glance. Its dedicated design means less clutter and a more direct path to the information most relevant for DMARC policy enforcement.
We experienced a relatively smooth onboarding process, with clear guidance on how to set up DMARC records and interpret initial reports. The reporting views are highly customizable, allowing us to filter data by various parameters, which is excellent for deep dives into specific issues. While its overall design might feel less modern than some other platforms, its functional clarity and specialized focus contribute to a highly efficient user experience for DMARC practitioners.
Which product has the best support
Support
Support for Cloudflare's DMARC service generally aligns with their broader support structure. For customers on higher-tier plans, we found access to dedicated technical support to be responsive and knowledgeable. However, for users on free or lower-tier plans, support is primarily community-based or relies on extensive documentation.
Our experience showed that while documentation is comprehensive, getting direct, immediate assistance for DMARC-specific issues on a free or basic plan can be challenging, often involving slower response times through ticketing systems. This means that organizations without in-house DMARC expertise might face a steeper learning curve or longer resolution times if they aren't on a paid plan with enhanced support.
We found GoDMARC's support to be a strong point, particularly given its specialized nature. Even on non-enterprise plans, they offer email and chat support, which we utilized effectively for setup assistance and troubleshooting. Their team demonstrated a clear understanding of DMARC intricacies, which is crucial when dealing with complex email authentication issues.
For their Go-Pro and Go-Enterprise plans, dedicated support is included or available as an add-on, providing a more personalized experience. We appreciated the proactive approach from their support team during our initial setup, ensuring that our DMARC records were correctly configured and reports were flowing as expected. This level of focused expertise can be invaluable for organizations prioritizing email security.
Who should use each product
Suitability
Cloudflare's DMARC management is best suited for organizations already leveraging the Cloudflare ecosystem for their web infrastructure, especially SMBs and enterprises. Its DMARC offering is a natural extension for those seeking to consolidate their security vendors. For SMBs, the free DMARC beta is an attractive entry point, while enterprises can integrate DMARC into their wider security and performance strategy.
For MSPs (managed service providers), Cloudflare offers a unified platform that can manage multiple client domains under one roof, although the DMARC features might require a deeper understanding of the overall Cloudflare environment. It's ideal for those who value an integrated security stack over a standalone DMARC solution, and who have existing technical resources to navigate the broader Cloudflare offerings.
GoDMARC is particularly well-suited for organizations, from SMBs to enterprises, that require a dedicated and comprehensive DMARC reporting and enforcement solution. Its focused feature set and clear interface make it an excellent choice for businesses whose primary goal is to bolster email security and combat phishing and spoofing. We found it highly beneficial for organizations that might not have extensive in-house email security expertise, as it simplifies complex DMARC data.
For MSPs (managed service providers), GoDMARC's multi-tenancy capabilities and clear reporting structure make it a viable option for managing DMARC for multiple clients. It provides granular control and detailed insights, which are invaluable for proactive email security management. Whether you're a small business starting your DMARC journey or a large enterprise looking for specialized tools, GoDMARC offers a focused and effective solution.
How does Cloudflare compare with GoDMARC?
DMARC report analysis
Ability to parse and visualize DMARC aggregate reports (RUA).
Source detection
Identifies email sending sources authenticating via your domain.
Forward detection
Detects mail forwarding that can break SPF and DKIM authentication.
Less explicit focus on forward detection compared to dedicated DMARC tools.
Spoof detection
Identifies fraudulent emails attempting to impersonate your domain.
Notifications and alerts
Sends alerts for DMARC failures or policy changes.
Reporting
Generates various reports on DMARC compliance and email traffic.
API
Offers an API for programmatic access to DMARC data.
Broader API for their entire platform, including DMARC.
API specifically for DMARC data.
Multi-tenancy
Supports managing DMARC for multiple domains or clients from a single account.
SPF flattening
Automates the process of reducing SPF DNS lookup count.
Not a native DMARC feature.
Not a native DMARC feature.
Hosted DMARC
Provides hosted DMARC records, reducing DNS complexity.
BIMI
Supports Brand Indicators for Message Identification (BIMI) implementation.
Not a primary DMARC feature.
MTA-STS/TLS-RPT
Support for Mail Transfer Agent Strict Transport Security and TLS Reporting.
Not a native DMARC feature.
Blocklists and reputation
Monitors IP blocklists (blacklists) and sender reputation.
General security, not specific DMARC reputation monitoring.
AI copilot
Uses AI to assist with DMARC analysis and recommendations.
AI features are for their broader security offerings.
DNS monitoring
Monitors DNS records for changes or issues.
Part of their general DNS services.
Not a primary feature.
Self hostable
Option to self-host the DMARC reporting solution.
Free trial/free tier
Availability of a free trial or perpetually free service tier.
Free beta access.
Free plan available.
Drawbacks and what to watch out for
Cloudflare, while a powerhouse for web security, has received feedback regarding its customer support, particularly for non-enterprise tiers, and occasional challenges with its extensive feature set feeling 'half-baked' in niche areas. GoDMARC, on the other hand, faces minor criticisms regarding the breadth of its business use cases and its emphasis on upfront payments, though its specialized focus is generally well-received.
We have pulled the average ratings from G2 for each product, and also included the most recent negative reviews for each product in full. Positive reviews tend to have less detail and have a higher chance of being fraudulent, so negative reviews are a better signal for your decision.
4.5 / 5(561)
4.9 / 5(13)
Horrible Support and Billing - They run with your money and don't care to get billing correct
0.0 / 5
What do you like best about Cloudflare Application Security and Performance?
Ease of deployment, dashboard and configurations for the WAF, Cache, and other features are top tier with ease, settings, and logging. Just don't have an issue with them or you're on your own. Also, don't keep a credit card on file or they'll bill you for their mistakes.
What do you dislike about Cloudflare Application Security and Performance?
Customer support and billing. Their support does not read what you have to say but rather comes in with their own interpretation of what has happened and forces their views on your issue rather than trying to understand exactly what is happening. On two occassions in the last few months I have had this happen when I encountered an issue with the core product and their billing.
The billing should be detailed further as it is sketchy business practices. Back in April they changed their billing software and charged me incorrectly for a month as it included the previous month as well (which I already paid). I brought this to their attention and the billing support assured me that it was not a problem. Come last week, they limited my account as I "had unpaid biling" so I contacted them again and brought attention to this wrong invoice that they never corrected. Come yesterday, they just charged my credit card on file without my authorization or explanination of what is going on. I've replied to the open ticket and created a new ticket and no one is answering.
I don't want to be a drama case but this is ridiculous to have been charged something from months ago and not be given an explanation.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
Improve the security and performance of our websites/applications. Their configurable/customizable WAF, CDN/Caching, bot mitigation, and DDoS protection accomplish this for our websites/applications.
Jim M.
Owner Small-Business (50 or fewer emp.)
A Good Domain Email Phishing Blocker
4.0 / 5
What do you like best about GoDMARC?
Its user interface provides easy integration of privacy records, easy to sign up, and serves as the central hub for all domain email-related privacy solutions.
It blocks phishing emails in real time, so businesses don't have to worry about them through DMARC, DKIM, SPF, and BIMI records.
What do you dislike about GoDMARC?
The product has potential for further improvement with the addition of more business use cases, which could expand its usefulness and appeal to a wider range of users.
What problems is GoDMARC solving and how is that benefiting you?
It addresses all phishing-related issues and enhances our brand reputation by providing a comprehensive solution.
Satyam V.
Founder Small-Business (50 or fewer emp.)
Support very unresponsive. Not understanding P1 urgency. Delayed project 3 whole days.
0.0 / 5
What do you like best about Cloudflare Application Security and Performance?
The website is intuitive, implementation steps are straightforward. It has numerous features, and they are indeed needed by a web app.
What do you dislike about Cloudflare Application Security and Performance?
If your implementation goes well, it's fine. However, if you are in trouble, the support doc is useless. You pay for the pro plan to try to get some technician support. No one cares about your business or service, even if you identify it as a P1 urgency. My project was down and could not get anyone to help me when I identified it as a high-impact ticket.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
The ticket support system is horrible. No technicians provide you with timely manner answers and support. Not worth the price.
Andrew Z.
Small-Business (50 or fewer emp.)
WAF is good, but so many half baked side features
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
The WAF is pretty industry standard. Its not too slow, gets regular updates, easy to deploy and cheap
What do you dislike about Cloudflare Application Security and Performance?
The side features are just trash. Its clear they have been shipped and dropped.
Cloudflare Bot Detection should not exist. Its not even funny how easy it is to bypass.
Page Shield is a joke, their API security is a joke.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
OWASP top 10
Verified User in Computer Software
Small-Business (50 or fewer emp.)
Love the product- support could use some work
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
Super easy to use. Very developer friendly. Tons of value for price. Undoubtedly #1 in WAF.
What do you dislike about Cloudflare Application Security and Performance?
Could use some better support. No direct channels for tech questions.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
It's providing great security for our web app.
Verified User in Computer Software
Mid-Market (51-1000 emp.)
Don't Pay for Support
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
In general, cloudflare is really easy to navigate, especially for simple DNS and domain management. Unless you have a complicated setup, I find it easy enough to move a domain or simply manage DNS for most sites.
What do you dislike about Cloudflare Application Security and Performance?
Their support is terrible. Had an issue with a client's DNS and the person I was talking to clearly didn't have a clue what they were talking about. They took so long between answers, it seemed like they were just asking someone else. Ultimately, they were of no help and we were out the money we paid to have live support.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
Makes DNS and Security easy for most websites and domains.
Verified User in Marketing and Advertising
Small-Business (50 or fewer emp.)
Pricing
Cloudflare offers a free DMARC beta but requires contacting sales for specific pricing beyond that, whereas GoDMARC provides a tiered structure with clear pricing for various email volumes.
4.5 / 5(561)
