DMARC

DMARC (Domain-based Message Authentication, Reporting & Conformance) is an email standard designed to help prevent email spoofing/phishing when used in conjunction with SPF (see Set up SPF) and/or DKIM (DKIM Certificate Generation). Additionally, DMARC gives the administrator the option to set the handling for the receiving server to handle the messages which fail the DMARC check. DMARC also provides the tools for domain owners to monitor the abuse of their domains.

We highly recommend configuring DMARC DNS records on domains especially if your domain is the target of spoofed emails. If you are unclear on how to setup DNS records please consult your DNS provider.

Configuring DMARC Checks in Spam Experts

DMARC checks are enabled by default, we do not recommend disabling these.

To alter the DMARC checks within the Spam Experts filter:

  1. In the Domain Level Control Panel, select Incoming - Protection Settings > Filter Settings
  2. In the Sender checks panel, ensure the DMARC option is ticked to have the checks enabled, or unticked to disable all DMARC checking:

  3. Click Save

Skip Specific Domains from DMARC Checks

At times you may need to skip this check for a specific sending domain so that any messages claiming to be from that domain (both SMTP sender address and header from address) will bypass the DMARC check. This can be done like SPF and DKIM check disabling:

  1. In the Domain Level Control Panel, select Incoming - Protection Settings > Filter Settings
  2. Click the Manage list of domains and IP addresses with disabled SPF, DKIM, and DMARC checks link at the top of the page
  3. Navigate to the Disabled DMARC Domains tab
  4. In the Add a Domain panel, enter the domain name in the Domain field and click Add
  5. Any messages claiming to be from that domain (both SMTP sender address and header from address) will now bypass the DMARC check

Entering your own domains in this field will dramatically increase the risk of receiving a malicious message with spoofed from addresses.