EmailConfigurationSpanish version

Support article

Activate DMARC on your domain

Learn what DMARC is, why it protects your domain and how to create a basic TXT record in DNS.

Published: 27/06/2026Updated: 27/06/2026

Introduction

DMARC helps protect your domain against forged email. If you use addresses such as info@yourdomain.com, enabling it is an important step to reduce phishing, improve domain reputation and control who can send email on your behalf.

What DMARC is

DMARC means Domain-based Message Authentication, Reporting and Conformance. It is published in DNS as a TXT record and works together with SPF and DKIM.

When a receiving server gets a message that claims to come from your domain, it checks whether those validations pass. If they do not, DMARC tells the server what to do with that message.

Why you should enable it

DMARC can help you:

  1. Reduce domain spoofing attempts.
  2. Improve trust with receiving servers.
  3. Detect services that send email on behalf of your domain.
  4. Receive reports about domain usage.
  5. Move toward a stricter anti-forgery policy.

Before creating the record

Before enabling DMARC, make sure your domain has correct:

  • SPF
  • DKIM
  • DNS records
  • Legitimate sending services

If you enable a policy that is too strict without checking this first, some legitimate messages may fail delivery.

How to create a basic DMARC record

  1. Open the panel where you manage your domain DNS.
  2. Go to the DNS zone or record editor.
  3. Create a new TXT record.
  4. Use _dmarc as the name.
  5. Use a starting value such as:
v=DMARC1; p=none; rua=mailto:reports@yourdomain.com
  1. Replace reports@yourdomain.com with a real mailbox.
  2. Save the change and wait for DNS propagation.

What each part means

TagMeaning
v=DMARC1Identifies the record as DMARC
p=noneMonitor only, do not block
rua=mailto:...Address that receives aggregate reports

Available DMARC policies

PolicyAction
p=noneMonitor only
p=quarantineSuggest moving failed mail to spam
p=rejectSuggest rejecting failed mail

Conclusion

DMARC is an important security layer for your domain email. Start with a monitoring policy, review the reports and tighten the configuration only when you are sure your legitimate senders are correctly aligned.