What is DMARC?
DMARC, which stands for Domain-based Message Authentication, Reporting, and Conformance, is a DNS TXT Record that, when implemented for a domain, controls how failed message authentications are handled by recipient servers.
There are three DMARC policies that each behaves differently when spoofing attempts are detected for the corresponding domain.
"none" policy: This policy is used for monitoring only and instructs email receivers to send DMARC reports to the specified email addresses without taking any action on emails that fail DMARC checks.
"quarantine" policy: This policy is used for stricter enforcement and instructs email receivers to place emails that fail DMARC checks in the spam or junk folder. However, the emails will still be delivered to the recipient.
"reject" policy: This policy is used for the strictest enforcement and instructs email receivers to reject emails that fail DMARC checks, meaning the emails will not be delivered to the recipient.
Locate DMARC on the Platform.
DMARC information and a default none policy is available within Settings โ๏ธ > Setup and Integrations.
DMARC Dashboard View
When a DMARC policy has been implemented and Aggregated Reports have been routed to the correct Inbox Monster address, reporting will be available (seen above: "rua=___@inboxmonster").
From the DMARC dashboard, you'll be able to see or export DMARC successes and threats for a 7 day period, as well as the percentage breakdown of both SPF or DKIM passes for all of your domains at a glance.
DMARC by Domain and IP
When clicking on one of the domains in the DMARC Dashboard, you'll be presented with the following, all filterable by date range:
Total Count and Percentage of Threats and Passes
SPF and DKIM Breakdowns
DMARC Threats Over Time
The active policy and TXT record detected in the DNS
ISP Sources for passes and threats
Sending sources for passes and threats
If you have any questions about which DMARC policy is right for your program, we're always happy to assist!