DMARC

DMARC (Domain-based Message Authentication, Reporting & Conformance) is a DNS TXT record at _dmarc.<your-domain> that tells receiving mailbox providers what to do when a message fails DKIM or SPF authentication.

Why it matters

In February 2024, Google and Yahoo announced that senders shipping more than 5,000 messages per day to consumer mailboxes must publish a valid DMARC record. Failing to do so increasingly results in messages being rejected outright rather than landing in spam.

Even below that volume, a DMARC record measurably improves inbox placement and gives you visibility into which systems are sending mail with your domain.

Adding a DMARC record

Add a single TXT record at the host _dmarc.<your-domain>. A safe starter record:

v=DMARC1; p=none; rua=mailto:postmaster@your-domain;

The p= directive controls policy:

• p=none — monitor only; no enforcement. Start here.
• p=quarantine — failing messages go to spam.
• p=reject — failing messages are rejected.

Move from none to quarantine to reject over weeks, watching the aggregate reports (rua=) so you don't accidentally block legitimate mail from a forgotten sender.

How CauseVox checks

We perform a DNS TXT lookup against _dmarc.<your-domain> from the application server. If we find a record beginning with v=DMARC1, we display the policy. We do not manage the record on your behalf — your domain host or DNS provider owns it.