Create Your DMARC Record

Quickly generate a DMARC record and apply it to your DNS with ease.

Setting up DMARC is confusing - we’ll just do it for you.

  • Full setup by an expert
  • No ongoing tools or dashboards required
  • One-and-done - configured correctly from the start

Want to skip the hassle? Book a one-time DMARC Setup Call

DMARCFlow dashboard on a laptop

What Is A DMARC Record?

A DMARC (Domain-based Message Authentication, Reporting & Conformance) record is a simple TXT entry you add to your domain's DNS. It tells mail servers how to handle emails that fail authentication checks like SPF or DKIM.

In plain terms: it's a policy that helps stop spoofing, phishing, and unauthorized email use by telling other servers what to do with suspicious messages - reject, quarantine, or allow them.

Illustration of DMARC concepts
Example DMARC Record:
  • v=DMARC1: Version
  • p=none: Policy (none = take no action)
  • rua: Email address where reports should be sent

Why It Matters

Without a DMARC record, your domain may still work - but you'll have no visibility into who's using it, no alerts when spoofing happens, and no control over email abuse.

With a DMARC record in place, you get:

  • Better email security
  • Insight into unauthorized activity
  • Stronger trust from mail providers and customers

Generate Your DMARC Record

Please enter a valid domain, e.g. example.com.
Note: aspf and adkim are optional. The p= tag defines what to do with messages that fail SPF/DKIM.
100% of messages are subject to policy.

Your DMARC Record

Add this TXT value at host _dmarc.<yourdomain> in DNS.

DMARC Dashboard
Video placeholder

External content blocked

To protect your privacy, YouTube is not loaded without your consent.

By clicking, you agree to load content from YouTube (Google). See our Privacy Policy.

Why DIY Can Be A Nightmare

Let's face it - setting up a DMARC record is confusing, error-prone, and frustrating.

One typo = broken email delivery - and reports are raw XML made for machines
Cryptic tags like p=quarantine, aspf=s, fo=1… - what do they even mean?
No alerts, no visibility - until something goes wrong
DNS formatting is unforgiving - and there's no undo

Want it done right the first time? - Get help from a real person. One-time, no subscription.

Frequently Asked Questions

Common questions about DMARC record generation

DMARCFlow's DMARC Record Generator allows you to create a valid DMARC record in a few clicks. The generated syntax will meet your specifications and is ready to publish in your DNS.

Copy the record, then in your DNS add a TXT at host _dmarc (full host _dmarc.yourdomain.com) and paste the value.
Tip: many DNS providers auto-append the domain; enter only _dmarc. DNS changes can take time to propagate.

Manually it’s a DNS TXT record. With DMARCFlow’s Managed DMARC, we may provide a CNAME that points your DMARC host to our managed endpoint for centralized control.

Alignment occurs when the domain in the email’s From: matches (per policy) the domain authenticated by SPF and/or DKIM. Aligned mail passes DMARC, helping prevent spoofing and phishing.

Subdomains inherit the parent domain’s policy unless you specify sp= or publish a separate subdomain record. Example: parent p=reject applies to subdomains unless overridden.

You can publish it, but it won’t be effective without SPF or DKIM configured and aligned. DMARC passes when at least one authenticates and aligns.