DMARC record generator
Generate secure DMARC records with our free tool. Protect your domain from email spoofing and improve deliverability with proper DMARC authentication policies.
DMARC record configuration
Email addresses to receive aggregate DMARC reports.
Start with a lower percentage for testing (e.g. 10%). Leave empty for 100% (default).
Generated DMARC record
DNS setup instructions
- Go to your DNS provider's control panel
- Create a new TXT record
- Set the name/host to:
_dmarc - Paste the generated value above
- Save the record and wait for DNS propagation (up to 24 hours)
Want to learn more about DMARC parameters and options?
Our comprehensive guide covers all DMARC tags, their meanings, and best practices for implementation. Perfect for understanding what each option does.
View complete list of DMARC tagsWhat is a DMARC record?
A DMARC record is a DNS TXT record that tells email receivers how to handle emails from your domain and where to send authentication reports.
Example DMARC record
v=DMARC1; p=quarantine; rua=mailto:dmarc@yourdomain.com; ruf=mailto:forensic@yourdomain.com; fo=1
This record sets a quarantine policy, requests aggregate reports to dmarc@yourdomain.com, forensic reports to forensic@yourdomain.com, and generates reports when either SPF or DKIM fails.
DNS TXT record
Published at _dmarc.yourdomain.com as a DNS TXT record that email receivers can query to understand your authentication policy.
Policy instructions
Contains rules telling receivers what to do with emails that fail SPF or DKIM authentication: monitor, quarantine, or reject.
Reporting configuration
Specifies email addresses to receive detailed reports about authentication results and potential abuse attempts.
How DMARC records work
1
Email receiver gets a message claiming to be from your domain
2
Receiver checks SPF and DKIM authentication
3
Receiver looks up your DMARC record for policy guidance
4
Receiver applies your policy and sends you a report
How to create a DMARC record
Follow these simple steps to generate a secure DMARC record for your domain using our free tool.
1
Choose your policy
Select from none (monitoring), quarantine, or reject based on your security needs and implementation stage.
2
Add report emails
Enter email addresses to receive aggregate reports and optionally forensic reports for detailed analysis.
3
Configure options
Adjust advanced settings like alignment modes, failure options, and subdomain policies as needed.
4
Deploy to DNS
Copy the generated record and add it as a TXT record at _dmarc.yourdomain.com in your DNS settings.
Tip
Start with the "none" policy to monitor your email authentication without affecting delivery. After analyzing reports for 1-2 weeks, gradually move to "quarantine" and then "reject" for maximum protection.
Why use a DMARC record generator?
Creating DMARC records manually is complex and error-prone. Our generator ensures accuracy and saves time.
Prevents syntax errors
Manual DMARC record creation often leads to formatting mistakes that can break email authentication. Our tool generates syntactically correct records every time.
Saves implementation time
Instead of learning complex DMARC syntax and tag meanings, configure your policy through an intuitive interface and get production-ready records instantly.
Includes best practices
Built-in guidance helps you choose appropriate policies and settings based on industry standards and security recommendations.
The cost of no DMARC protection
Without DMARC records, your domain is vulnerable to email spoofing attacks that can:
- •Damage your brand reputation through phishing emails
- •Reduce legitimate email deliverability rates
- •Expose customers and partners to security threats
- •Result in compliance issues for regulated industries
Implementing DMARC is no longer optional, it's essential for email security.
