For additional guidance, check out our community articles detailing the process of migrating from your current platform to Carbonio CE.
DMARC or Domain-based Message Authentication, Reporting, and Conformance is an email authentication, policy, and reporting protocol that defines how your email servers should manage your SPF and DKIM. DMARC protects your domain from fraudulent emails by allowing you to publish a policy in your DNS records to determine which of DKIM or SPF (or both) should be used for sending emails from your domain.
How to Configure DMARC
To set up DMARC you need first to create the DMARC rule then add it to your DNS.
Tag Name | Purpose | Example |
---|---|---|
v | Protocol version | v=DMARC1 |
pct | Percentage of messages subjected to filtering | pct=20 |
ruf | Reporting URI for forensic reports | ruf=mailto:authfail@example.com |
rua | Reporting URI of aggregate reports | rua=mailto:aggrep@example.com |
p | Policy for organizational domain | p=quarantine |
sp | Policy for subdomains of the OD | sp=reject |
adkim | Alignment mode for DKIM | adkim=s |
aspf | Alignment mode for SPF | aspf=r |
- Create your DMARC rule
- You can use the tags above to set your DMARC rule
For examplev=DMARC1; p=quarantine; pct=100
v
is the version,p
is the policy you want the receiving server to follow if DMARC fails, it can set the policy to none, quarantine, or reject,pct
indicates this rule should be used for 100% of email,
- Or another example,
v=DMARC1;p=none;sp=quarantine;pct=100;rua=mailto:dmarcreports@example.com
v
is the version,p
is the policy you want the receiving server to follow if DMARC fails, it can set the policy to none, quarantine, or reject,sp
the subdomain policy,pct
is the percent of “bad” emails on which to apply the policy,rua
is the URI to send aggregate reports to.
- You can use the tags above to set your DMARC rule
- Add your DMARC rule to the DNS
- Access your DNS provider, for example, GoDaddy, Network Solutions, etc.
- Access your DNS Management or something like name server management.
- Add a new TXT entry.
- Set the Record Type to TXT.
- Insert
_dmarc
in the Hostname field. - Insert the created DMARC rule in the TXT Value field.
- Assign the Time to Live (TTL), for example, let’s use 3600s.
- Save the entry.
How to Verify Your DMARC
The next step would be testing your DMARC to see if it works. To do so, please see How to Verify Your DMARC Record.
Comments
[…] ejemplo, ¿cómo configurar DMARC? Boom, ahí está, con todo lujo de detalles:La página principal de community.zextras.com es limpia […]