Valimail excels in providing a highly automated DMARC enforcement solution. Their platform is built around automatically discovering email sending services and taking the manual configuration out of SPF and DKIM alignment, particularly with their patented Instant DMARC. This automation aims to get domains to an enforcement policy (p=reject) much faster than traditional methods.
We have found that Valimail offers robust visibility features, including precision sender intelligence, comprehensive dashboards, and detailed reports on DMARC, SPF, and DKIM authentication. They also provide features like SPF flattening and hosted DMARC, which are critical for organizations with complex email ecosystems, ensuring all legitimate senders are covered without exceeding lookup limits.
Cloudflare approaches DMARC management as one component within its broader suite of web security and performance services. While relatively newer to dedicated DMARC management, their offering focuses on leveraging their vast network infrastructure to provide insights and enforcement capabilities. We've seen their DMARC tool integrate with their existing DNS and security features, which can be advantageous for current Cloudflare users.
The platform provides DMARC management in beta, indicating ongoing development. Key features typically include aggregate reporting (RUA) processing, allowing users to monitor email authentication results. Cloudflare's strength often lies in its ability to offer a unified security stack, meaning DMARC can be managed alongside WAF, CDN, and DDoS protection, appealing to those seeking an all-in-one solution for their web properties.
How easy is each product to use
User experience
Valimail generally offers an intuitive and user-friendly interface, especially for viewing DMARC reporting information. The dashboards are designed to translate complex XML reports into understandable insights, making it easier to identify legitimate and unauthorized senders. We appreciate the guided workflows for DMARC implementation, which help simplify the process from a monitoring policy to an enforcement policy.
However, some users report that while the initial setup is straightforward, certain advanced features or deeper troubleshooting can be less intuitive. The platform's strong automation, while beneficial, can sometimes lead to less granular control for those who prefer more manual management. Overall, it focuses on simplifying DMARC for broader accessibility.
Cloudflare's DMARC management, while still in beta, aims for a user experience consistent with its broader platform: intuitive for basic DNS and security configurations. For existing Cloudflare users, integrating DMARC management can feel seamless, as they are already familiar with the dashboard layout and navigation. The platform's strength lies in providing a unified view for multiple web services.
New users, or those accustomed to DMARC-specific tools, might find the DMARC features less prominent within Cloudflare's extensive offerings. Some G2 reviews mention that while the main website management is intuitive, specific configurations can sometimes require technical expertise. As the DMARC offering evolves, we expect the dedicated user experience to become more refined.
Which product has the best support
Support
Valimail is known for providing strong customer support, particularly during the onboarding phase. Many users highlight the helpfulness and responsiveness of their support teams, which is crucial given the complexities of DMARC implementation. They offer resources like a knowledge base and, depending on the plan, onboarding assistance, dedicated account managers, and technical account managers.
However, a few reviews suggest that while support is generally good, it can sometimes be slow to respond, especially for non-critical issues or outside specific business hours for international customers. The availability of advanced support tiers often depends on the subscription level, with enterprise plans receiving the most comprehensive assistance, including Valicare services.
Cloudflare's support reputation is mixed, largely depending on the service tier. For basic users, support is often community-driven with extensive documentation. Premium and Enterprise plans typically receive more direct and timely technical assistance. When issues arise, especially with core services, G2 reviews indicate frustration with unresponsiveness or a lack of understanding from support staff, particularly for urgent P1 issues.
We have found that Cloudflare's extensive knowledge base and community forums are valuable resources for self-help. However, for critical DMARC implementation or troubleshooting, direct and knowledgeable technical support is paramount. The feedback suggests that while they offer various support channels, the quality and timeliness can vary significantly, especially for users not on higher-tier plans.
Who should use each product
Suitability
Valimail is best suited for organizations that prioritize automated DMARC enforcement and need a robust solution to achieve a reject policy swiftly. Its strength lies in handling complex email sending environments, making it ideal for enterprise-level clients with numerous sending services and domains. MSPs (Managed Service Providers) may find Valimail appealing for its ability to simplify DMARC for multiple clients, though the pricing model can be a factor.
SMBs (Small to Medium Businesses) can benefit from Valimail's simpler 'Monitor' product, which offers free DMARC visibility. However, to leverage its full automation and enforcement capabilities, the cost might be prohibitive for smaller businesses. We find it particularly strong for organizations that want to minimize manual intervention and ensure comprehensive DMARC compliance across their entire email ecosystem, reducing phishing and spoofing risks.
Cloudflare's DMARC offering is particularly suitable for organizations already leveraging Cloudflare for their broader web security and performance needs. Enterprises that seek a unified platform for managing DNS, WAF, CDN, and DMARC will find it convenient. SMBs can also use Cloudflare for their general web services, but the DMARC management features are still evolving.
For MSPs, integrating DMARC management into a broader Cloudflare stack might streamline operations if they're already managing client infrastructure through Cloudflare. However, if DMARC is the sole focus, other dedicated tools might offer more specialized features and support. We recommend Cloudflare for those who value an integrated security approach and are comfortable with a DMARC solution that is part of a larger ecosystem.
How does Valimail compare with Cloudflare?
DMARC report analysis
Aggregating and interpreting DMARC XML reports into an understandable format.
Excellent, highly automated reports for clear visibility.
Provides aggregate reporting (RUA) processing and visibility.
Source detection
Identifying all legitimate and unauthorized senders using your domain.
Precise sender intelligence, automatic identification of services.
Helps identify senders on your domain based on DMARC data.
Forward detection
Ability to correctly identify forwarded emails and prevent false negatives.
Privacy-safe RUF+ (Enterprise) helps with forensic data.
Part of standard DMARC analysis, though specific features are evolving.
Spoof detection
Identifying and blocking unauthorized emails impersonating your domain.
Machine learning detects and blocks impersonation attacks.
Helps prevent brand impersonation through DMARC enforcement.
Notifications and alerts
Real-time alerts for DMARC failures, policy changes, or suspicious activity.
Notification center, smart alerts, configurable alerts (Enterprise).
Offers alerts within its broader security platform.
Reporting
Detailed and customizable reports on email authentication and deliverability.
Downloadable, subdomain, and executive reports available.
Provides analytics and insights as part of its platform.
API
Programmatic access to DMARC data and management features.
Available as an add-on or included in Enterprise plans.
API access for broader Cloudflare services, DMARC integration is developing.
Multi-tenancy
Ability to manage multiple domains or client accounts from a single dashboard.
Supports managing multiple domains, with portfolios for Enterprise.
Suitable for managing multiple web properties/domains.
SPF flattening
Automatically managing SPF records to stay within the 10-lookup limit.
Unlimited SPF lookups beyond the 10-lookup limit.
Offered as part of their DNS management capabilities.
Hosted DMARC
Automatically managing the DMARC record via a CNAME record.
Fully automated DMARC record management.
Integrates DMARC into their DNS management system.
BIMI
Support for Brand Indicators for Message Identification.
Included in all plans, Amplify add-on for fast-tracking BIMI.
Not explicitly listed as a core DMARC feature; focus is on authentication.
MTA-STS/TLS-RPT
Support for Mail Transfer Agent Strict Transport Security and TLS Reporting.
Primarily focuses on DMARC, not core MTA-STS/TLS-RPT management.
Not a primary focus of their DMARC management offering.
Blocklists and reputation
Monitoring email blocklists (or blacklists) and sender reputation.
Focus is on DMARC authentication, not external blocklist monitoring.
Focus is on DMARC authentication, not external blocklist monitoring.
AI copilot
AI-powered assistance for DMARC configuration and analysis.
Utilizes machine learning for detection, not a conversational AI copilot.
Does not feature a dedicated AI copilot for DMARC.
DNS monitoring
Monitoring DNS records for unauthorized changes or issues.
Integral to their DMARC automation and hosted records.
Core offering of Cloudflare for domain management.
Self hostable
Option to host the DMARC reporting solution on your own infrastructure.
Cloud-based SaaS solution, not self-hostable.
Cloud-based SaaS solution, not self-hostable.
Free trial/free tier
Availability of a free trial or a permanently free tier.
Valimail Monitor is a free service with DMARC visibility.
DMARC Management beta is free, broader Cloudflare has free plans.
Drawbacks and what to watch out for
When considering Valimail, some drawbacks include its pricing, which can be high for smaller businesses transitioning from the free tier to enforcement plans, and some users note a lack of granularity in reports. Cloudflare's DMARC offering, being in beta, may lack mature features or dedicated support compared to its more established security products, and its support response times are a recurring concern, especially for lower-tier users.
We have pulled the average ratings from G2 for each product, and also included the most recent negative reviews for each product in full. Positive reviews tend to have less detail and have a higher chance of being fraudulent, so negative reviews are a better signal for your decision.
4.6 / 5(421)
4.5 / 5(561)
Easy DMARC Monitoring But Not Great
3.5 / 5
What do you like best about Valimail?
Valimail is pretty simple to setup and use. We were wanting to monitor some changes to DMARC, and Valimail was the platform we ultimately decided to use.
What do you dislike about Valimail?
A few things I don't like:
1. The free vs premium features are frustrating. I can't see enough value from free to validate a move to premium.
2. The Sender Requirement Failure feature is in beta and never really works. I can't only get it to work if I expand it before a week, and even then it's hit-or-miss.
3. It doesn't really do enough. Other platforms I've tried did a better job at helping to explain the WHY and HOW rather than just the what. Valimail primarily focuses on the WHAT.
4. Some of the feature organization is weird within the app, even after having used it for a few months. I can get more value in the account overview than the sender requirements failure, which is counter-intuitive IMO.
What problems is Valimail solving and how is that benefiting you?
We had a baselevel view of email security when I was initially hired and wanted to monitor the DMARC changes effectively.
Verified User in Construction
Small-Business (50 or fewer emp.)
Horrible Support and Billing - They run with your money and don't care to get billing correct
0.0 / 5
What do you like best about Cloudflare Application Security and Performance?
Ease of deployment, dashboard and configurations for the WAF, Cache, and other features are top tier with ease, settings, and logging. Just don't have an issue with them or you're on your own. Also, don't keep a credit card on file or they'll bill you for their mistakes.
What do you dislike about Cloudflare Application Security and Performance?
Customer support and billing. Their support does not read what you have to say but rather comes in with their own interpretation of what has happened and forces their views on your issue rather than trying to understand exactly what is happening. On two occassions in the last few months I have had this happen when I encountered an issue with the core product and their billing.
The billing should be detailed further as it is sketchy business practices. Back in April they changed their billing software and charged me incorrectly for a month as it included the previous month as well (which I already paid). I brought this to their attention and the billing support assured me that it was not a problem. Come last week, they limited my account as I "had unpaid biling" so I contacted them again and brought attention to this wrong invoice that they never corrected. Come yesterday, they just charged my credit card on file without my authorization or explanination of what is going on. I've replied to the open ticket and created a new ticket and no one is answering.
I don't want to be a drama case but this is ridiculous to have been charged something from months ago and not be given an explanation.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
Improve the security and performance of our websites/applications. Their configurable/customizable WAF, CDN/Caching, bot mitigation, and DDoS protection accomplish this for our websites/applications.
Jim M.
Owner Small-Business (50 or fewer emp.)
I like Valimail - mostly.
3.5 / 5
What do you like best about Valimail?
Good interface for viewing DMARC reporting information.
What do you dislike about Valimail?
Price, it'd be nice if they could institute a model based on volume rather than the number of email domains.
What problems is Valimail solving and how is that benefiting you?
Valimail provides DMARC provides good aggregate reporting for our email domains, allowing us to implement to the eventual reject policy goal.
Verified User in Real Estate
Mid-Market (51-1000 emp.)
Support very unresponsive. Not understanding P1 urgency. Delayed project 3 whole days.
0.0 / 5
What do you like best about Cloudflare Application Security and Performance?
The website is intuitive, implementation steps are straightforward. It has numerous features, and they are indeed needed by a web app.
What do you dislike about Cloudflare Application Security and Performance?
If your implementation goes well, it's fine. However, if you are in trouble, the support doc is useless. You pay for the pro plan to try to get some technician support. No one cares about your business or service, even if you identify it as a P1 urgency. My project was down and could not get anyone to help me when I identified it as a high-impact ticket.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
The ticket support system is horrible. No technicians provide you with timely manner answers and support. Not worth the price.
Andrew Z.
Small-Business (50 or fewer emp.)
Straightforward onboarding
4.0 / 5
What do you like best about Valimail?
Ease of set-up and great customer support.
What do you dislike about Valimail?
Some features aren't as developed as some competitors, however ultimately it's up to each organization to decide the value of those features.
What problems is Valimail solving and how is that benefiting you?
Being able to report on DMARC successes and failures, to help us fine-tune the configuration to ensure each domain is correctly configured.
Verified User in Oil & Energy
Enterprise (> 1000 emp.)
WAF is good, but so many half baked side features
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
The WAF is pretty industry standard. Its not too slow, gets regular updates, easy to deploy and cheap
What do you dislike about Cloudflare Application Security and Performance?
The side features are just trash. Its clear they have been shipped and dropped.
Cloudflare Bot Detection should not exist. Its not even funny how easy it is to bypass.
Page Shield is a joke, their API security is a joke.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
OWASP top 10
Verified User in Computer Software
Small-Business (50 or fewer emp.)
Valimail Simplifies DMARC Management, But Watch for Vendor Lock-In
4.0 / 5
What do you like best about Valimail?
My favorite thing about Valimail is having a single portal that puts all DMARC reports into an easy to understand view. Having this information allowed us to identify hundreds of 3rd party email sources sending on behalf of our domain. Doing this without such a portal would be incredibly difficult especially in a franchise setting like ours where we have more services sending on behalf of our domain than most other companies.
What do you dislike about Valimail?
Valimail isn't cheap but you definitely get what you pay for. I also grow concerned about vendor lock-in now that I have setup Valimail to handle DMARC, SPF and DKIM with no exist strategy.
What problems is Valimail solving and how is that benefiting you?
Valimail solves the problem of visibility into who is sending on our behalf and makes identifying them easy.
Verified User in Non-Profit Organization Management
Mid-Market (51-1000 emp.)
Love the product- support could use some work
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
Super easy to use. Very developer friendly. Tons of value for price. Undoubtedly #1 in WAF.
What do you dislike about Cloudflare Application Security and Performance?
Could use some better support. No direct channels for tech questions.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
It's providing great security for our web app.
Verified User in Computer Software
Mid-Market (51-1000 emp.)
A Must-Have for Email Security
4.0 / 5
What do you like best about Valimail?
The best thing about Valimail is its fully automation feature as we can get the reports automated with whole monthly data .
As I prepare reports every month in which I have to include the malicious email data so I do not need to manually check each single thing , the Valimail does it for itself.
What do you dislike about Valimail?
The thing which I dislike about Valimai is that its little expensive especially for the businesses which are small nd not much expanded .
What problems is Valimail solving and how is that benefiting you?
The problem which Valimail is solving for me is the manual effort for exporting the data related to spam emails and its security checks are the best .It filters out the emails properly and which are suspicious , they get rejected easily .
Verified User in Transportation/Trucking/Railroad
Enterprise (> 1000 emp.)
Don't Pay for Support
2.5 / 5
What do you like best about Cloudflare Application Security and Performance?
In general, cloudflare is really easy to navigate, especially for simple DNS and domain management. Unless you have a complicated setup, I find it easy enough to move a domain or simply manage DNS for most sites.
What do you dislike about Cloudflare Application Security and Performance?
Their support is terrible. Had an issue with a client's DNS and the person I was talking to clearly didn't have a clue what they were talking about. They took so long between answers, it seemed like they were just asking someone else. Ultimately, they were of no help and we were out the money we paid to have live support.
What problems is Cloudflare Application Security and Performance solving and how is that benefiting you?
Makes DNS and Security easy for most websites and domains.
Verified User in Marketing and Advertising
Small-Business (50 or fewer emp.)
Pricing
Valimail offers a free monitoring tier with paid enforcement plans that start at a significant annual cost, while Cloudflare's DMARC management is currently in beta and free, with broader platform pricing varying by service and tier.
Small
Up to 10k emails / month
Monitor: Free. Enforce Starter: $5,000/year (Contact for pricing)
DMARC Management: Free (Beta). Other plans vary.
Medium
Up to 100k emails / month
Monitor: Free. Enforce Starter: $5,000/year (Contact for pricing)
DMARC Management: Free (Beta). Other plans vary.
Large
Up to 1 million emails / month
Monitor: Free. Enforce Premium/Enterprise: Contact for pricing
DMARC Management: Free (Beta). Other plans vary.
Enterprise
Over 1 million emails / month
Enforce Enterprise: Contact for pricing. Align Bronze: $19/month (500k emails/month)
4.6 / 5(421)
