Back to Knowledge Base
Security & Integrity

What is a DMARC Policy?

DMARC is the ultimate gatekeeper for your domain's emails. Without it, scammers can easily forge emails that look like they came from you.

The Spoofing Problem

By default, anyone can send an email and pretend it came from your domain. If scammers spoof your domain to send phishing emails, email providers (like Gmail) will punish your reputation.

How DMARC Works

DMARC (Domain-based Message Authentication, Reporting, and Conformance) relies on two other records: SPF and DKIM. It tells email providers exactly what to do if an email fails authentication:

  • None: Monitor only. Do nothing.
  • Quarantine: Send unauthenticated emails to the spam folder.
  • Reject: Block unauthenticated emails completely.

Audit Your DMARC with Igris Radar

Setting up DMARC incorrectly can accidentally block your own legitimate emails. Igris Radar instantly verifies if your policy is secure and properly configured.

Run Security Audit

How to Fix It

  1. Scan: Check your current DNS records.
  2. Configure SPF & DKIM: Ensure your authorized senders are validated.
  3. Publish DMARC: Add a TXT record starting at `p=none` and slowly move to `p=reject`.