DMARC

DMARC (Domain-based Message Authentication, Reporting & Conformance) is an email standard designed to help prevent email spoofing/phishing when used in conjunction with SPF and/or DKIM Certificate Generation. Additionally, DMARC gives the administrator the option to set the handling for the receiving server to handle the messages which fail the DMARC check. DMARC also provides the tools for domain administrators to receive reports of abuse of their domains.

We highly recommend configuring DMARC DNS records on all domains especially if your domain's are the target of spoofed emails. If you are unclear on how to setup DNS records please consult your DNS provider.

Skip Specific Domains from DMARC Checks

At times you may need to skip this check for a specific sending domain on the inbound filter so that any messages claiming to be from that domain (both SMTP sender address and the header FROM address) will bypass the DMARC check.

  1. In the Domain Level Control Panel, select Incoming - Protection Settings > Filter Settings
  2. Click the Manage list of domains and IP addresses with disabled SPF, DKIM, and DMARC checks link at the top of the page
  3. Navigate to the Disabled DMARC Domains tab
  4. In the Add a Domain panel, enter the domain name in the Domain field and click Add
  5. Any messages claiming to be from that domain (both SMTP sender address and header from address) will now bypass the DMARC check

Entering your own domains in this field will dramatically increase the risk of receiving a malicious message with spoofed from addresses.

Configuring DMARC Checks in Mail Assure

DMARC checks are enabled by default, we do not recommend disabling these.

To alter the DMARC checks within the Mail Assure filter:

  1. In the Domain Level Control Panel, select Incoming - Protection Settings > Filter Settings
  2. In the Sender checks section, ensure the DMARC option is ticked to have the checks enabled, or unticked to disable all DMARC checking:

  3. Click Save