The DMARC record (Domain-based Message Authentication, Reporting and Conformance) is a protocol used in conjunction with SPF and DKIM records for additional protection against spam and phishing attacks. The DMARC record defines what happens to e-mail messages that do not pass SPF and DKIM verification.
How does a DMARC record work?
When an email message is received, the receiving mail server checks the SPF and DKIM records of the sender's domain. If the message fails the check, the receiving mail server will check the DMARC record to see what to do with it.
There are three options in the DMARC record:
- None : No action is taken. The message is delivered normally.
- Quarantine : The message is marked as SPAM and placed in the quarantine.
- Reject : The message is rejected and not delivered.
Advantages of using DMARC records:
- It additionally reduces the amount of SPAM in your inbox
- Increases the reliability of your e-mail
- Protects your domain from phishing attacks
- It helps you track who is sending email messages on behalf of your domain
How to set DMARC record?
You can set a DMARC record in your domain's DNS configuration as follows:
- Find the Zone Editor within the cPanel interface
- Add a new TXT record
- In the "Name" field, type "_dmarc"
- Enter the DMARC record in the "Record" field
- Save the changes
Example of a DMARC record:
v=DMARC1; p=reject; rua=mailto:dmarc-reports@example.com; rf=afrfThis example DMARC record:
- rejects all e-mail messages that do not pass SPF and DKIM verification ( p=reject )
- sends DMARC check reports to the e-mail address dmarc-reports@example.com (remember to replace this address with a valid e-mail address to which you will receive reports)
- Use "afrf" format for reports ( rf=afrf )
For more information on managing and setting up new TXT records, visit the link " How to set up a TXT record in cPanel? "
