Protect your domain from spoofing with Mailmodo DMARC checker

A broken or missing DMARC (Domain-based Message Authentication, Reporting & Conformance) record leaves your email domain exposed. Phishing attacks, poor inbox placement, and lost trust all start with weak authentication.

Mailmodo free DMARC checker helps you with that by verifying your domain’s email authentication in seconds. Get a clear, actionable report on whether your DMARC record exists, it's correctly formatted, and what policy is in place.

How to use Mailmodo DMARC Checker

Step 1: Enter your domain

Type the domain name you want to check into the search field. This is the part of an email address that comes after the '@' symbol (for example, yourdomain.com).

Step 2: Run the check

Click the button to begin the lookup. The tool will query your domain’s DNS records to find and analyze the DMARC entry.

Step 3: Review the results

You’ll see details from the DMARC record, including the policy in use (none, quarantine, or reject), the reporting addresses, and any configuration or syntax issues the tool detects.

<div class="highlight-gray"> <p> <strong>💡 Related guide: <a href=https://www.mailmodo.com/guides/dmarc/></strong>What Is DMARC and How to Set It Up</a></p> </div>

How to create a DMARC record

Step 1: Decide on your policy

Choose what receiving mail servers should do with emails that fail authentication. Typically, there are three options:

• none - Monitor only

• quarantine - Send to spam

• reject - Block entirely

Step 2: Write your DMARC record

A basic DMARC record format looks like this:

v=DMARC1; p=none; rua=mailto:dmarc-reports@example.com

• v=DMARC1 specifies the version

• p= sets your policy

• rua= sets the email address for aggregate reports

Step 3: Add the record to your DNS

Log in to your domain registrar or DNS hosting account, go to the DNS management section, and create a new TXT record:

Host/Name: _dmarc

Value: Your DMARC string

TTL: Default or 1 hour

Step 4: Publish and test

Save your changes, wait for DNS propagation (up to a few hours), and then use a DMARC checker to make sure it’s valid.

Step 5: Maintain your DMARC record

Review reports regularly and, when confident, move from none to a stricter policy like quarantine or reject for better protection.

What are the most common mistakes when creating DMARC records?

Here are the most frequent DMARC record errors:

• Missing required version tag: Every DMARC record must start with v=DMARC1. Without it, mail servers will not recognize the record.

• Incorrect DNS host name: The record must be published as a TXT record for _dmarc.yourdomain.com. Placing it elsewhere means it will not be found.

• Syntax errors: Misplaced semicolons, missing tags, or unsupported parameters can cause the record to be ignored.

• Multiple DMARC records: A domain should have only one DMARC TXT record. Having more than one can make the configuration invalid.

• Overly strict policy too soon: Setting p=reject before SPF and DKIM are correctly aligned can cause legitimate messages to bounce.

• Missing reporting addresses: Leaving out rua or ruf means you will not receive reports about authentication failures.

• Unmonitored reporting addresses: Reports sent to an inbox that no one checks remove the benefit of DMARC’s visibility.

You can learn more about DMARC and about setting it up in this detailed guide- What Is DMARC and How to Set up DMARC Record?