Email deliverability is key to ensuring your messages reach your audience. One of the simplest ways to improve deliverability is by adding a DMARC (Domain-based Message Authentication, Reporting, and Conformance) policy. DMARC protects your domain against phishing and spoofing and helps email providers verify that emails are genuinely from your domain. Here’s a step-by-step guide to setting up a basic DMARC policy for your domain.
What is DMARC?
DMARC is an email authentication protocol that works alongside SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) to confirm that emails from your domain are legitimate. Implementing a DMARC policy, you help prevent unauthorized senders from using your domain for spam or phishing.
Step-by-Step Guide to Implement DMARC
1. Log in to your DNS Provider’s dashboard
Access the DNS settings for the domain you want to protect.
2. Create a New TXT Record
-
Name: _dmarc.yourdomain.com
-
Value: This is your DMARC policy. For a simple policy, use the following:
Type: TXT
v=DMARC1; p=none
Here’s what each part means:
- v=DMARC1: Specifies the DMARC version.
- p=none: This policy tells email servers to take no action on emails that fail DMARC checks. It’s useful for initial setup without strict filtering.
After entering the details, save the new TXT record. That's it and you're done!
Why Start with a “None” Policy?
A “none” policy is the least strict DMARC setting. It allows you to:
- Ensure your DMARC record is correctly set up.
- Avoid immediate changes to deliverability.
- Gradually monitor email behavior without enforcing restrictions.
Starting with “none” is a safe approach for domains new to DMARC. As you become more comfortable, you can later consider moving to stricter policies like “quarantine” (sends failed emails to spam) or “reject” (blocks failed emails entirely).