DMARC Record Checker — Parse and Validate DMARC Policy

Parse and validate DMARC policy for your domain.

DMARC (Domain-based Message Authentication, Reporting and Conformance) is a TXT record at _dmarc.{domain} that tells receivers what to do when SPF or DKIM fails (none, quarantine, reject) and where to send aggregate and forensic reports. This tool fetches and parses the DMARC record and validates tags (v, p, rua, ruf, pct, adkim, aspf, etc.). Use it to confirm your policy after setup, to debug report delivery issues, or to ensure you are not blocking legitimate mail. DMARC works together with SPF and DKIM; all three should be correctly configured.

Frequently Asked Questions

What does p=none vs p=quarantine vs p=reject mean?

none = monitor only; quarantine = treat as suspicious (e.g. spam); reject = reject the message. Start with none, then tighten.

Where do reports go?

rua= aggregate report URI; ruf= forensic report URI. Use mailto: addresses you control.

Do I need SPF and DKIM before DMARC?

Yes. DMARC tells receivers what to do when SPF/DKIM fail; without them DMARC has little effect.

Why am I not getting reports?

Check rua/ruf syntax, that the addresses accept mail, and that your DNS has propagated. Some senders only send aggregate.

Can I use DMARC on subdomains?

Yes. Set a record at _dmarc.subdomain.domain. Use sp= to suggest policy for subdomains.

More Dns Tools

Explore Other Tool Hubs