What is DMARC?
DMARC (Domain-based Message Authentication, Reporting, and Conformance) is an email authentication protocol that combines SPF and DKIM to protect domains from spoofing and phishing.
DMARC Definition
DMARC is an email authentication protocol that builds on top of SPF and DKIM to provide domain owners with control over how their email is authenticated and what happens when authentication fails. Published as a DNS TXT record, a DMARC policy tells receiving mail servers how to handle emails that fail SPF or DKIM checks — whether to deliver them normally, quarantine them to the spam folder, or reject them outright.
Beyond enforcement, DMARC provides a powerful reporting mechanism. Domain owners receive daily aggregate reports from receiving mail servers showing how many messages passed or failed authentication, which IP addresses are sending email using their domain, and whether any unauthorized senders are attempting to spoof their domain. These reports give visibility into email traffic and help identify configuration issues or active spoofing attempts.
DMARC adoption has grown rapidly across the email industry. Major email providers including Gmail, Yahoo, and Microsoft now require DMARC for bulk senders. Organizations that implement DMARC with an enforcement policy (quarantine or reject) see significant reductions in phishing attacks impersonating their brand, while also enjoying improved deliverability as ISPs give preference to properly authenticated email.
How DMARC Relates to Email Verification
DMARC and email verification work together to ensure email communications are trustworthy. Our email verification service checks the authentication setup of recipient domains as part of the verification process. Domains with strong DMARC policies are generally well-managed and more likely to have reliable mail servers, which improves verification accuracy.
For senders, implementing DMARC alongside email list verification creates a dual layer of protection: DMARC ensures your outgoing emails are authenticated and protected from spoofing, while list verification ensures you are sending to valid, deliverable addresses. Together, they maximize your inbox placement rate.
Check your DMARC policy. Use our free checker to verify your domain's authentication configuration.
Check DMARC RecordDMARC FAQ
DMARC stands for Domain-based Message Authentication, Reporting, and Conformance. It is an email authentication protocol that builds on SPF and DKIM to give domain owners control over what happens when an email fails authentication — whether it should be delivered, quarantined, or rejected.
The three DMARC policies are: none (monitor only — no action is taken on failing emails), quarantine (failing emails are sent to the spam or junk folder), and reject (failing emails are blocked entirely). Most organizations start with "none" to monitor, then gradually move to "quarantine" and finally "reject" as they confirm legitimate email sources are properly authenticated.
To set up DMARC, first ensure SPF and DKIM are properly configured for your domain. Then add a DMARC TXT record to your DNS with your desired policy. You can verify your setup with our free SPF, DKIM & DMARC Checker. Start with a "none" policy to collect reports before enforcing stricter rules.
Try our free email verifier — verify any email instantly, no signup required. Need bulk verification? Upload your list and clean thousands of emails in minutes.
Developers: integrate email verification into your app with our RESTful API — SDKs for 7 languages.
View our simple pricing plans — start free, scale as you grow.
Learn more: what is email verification · best practices · how it works