Chat +1-888-563-5277 [email protected]
April 9, 2018

A step by step guide to add DMARC record to DNS in 1 minute

Why to add DMARC record?
You are here, it means You want to add DMARC record to your DNS. If you already familiar with DMARC you can skip the introduction part and check the last part of this article. What If I can say You can do it in less than 5 minutes on Your own, without a technician help? Our DMARC guide will help You enjoy adding a DMARC record.
DMARC-record-generator
Check your domain and add the DMARC record for it.
Check Your Domain

Adding DMARC record to your email (Domain-based Message Authentication Reporting and Conformance) is the best way to keep You email protected and trusted because this strongest protocol takes care of Your your business, customers, moreover, it rescues your employers from phishing and spoofing attacks.With DMARC, companies get incredible visibility and also get more transparency into the spoofed and illegal emails sent using their domain names. Moreover, DMARC is a fantastic tool with its ability to differentiate all the email that sent from you or by hacker who want to deal with Your companies` bad authority. For example, This can be a third party, business units, or threat actor. Because of the lack of protection businesses

Here is the example of phishing attempts:

phishing-attempts

Why do companies need to build DMARC record and protect business email?

Brand trust and authority,  the elimination of customer support costs, Email fraud elimination, the time that You will save on catching cybercriminals and finding out the illegal usage of Your email. DMARC makes your customers have private and trusted email communication without the fear of being a cyberattack victim. It will amaze You how much businesses losing their money due to the cyber attacks.

Here are some statistics:

The average cost of data breach

64% of companies have experienced web-based attacks

62% experienced phishing & social engineering attacks
59% of companies experienced malicious code and botnets and

51% experienced denial of service attacks

Briefly: What is DMARC?

DMARC – an open standard enabled on 70% of the world’s inboxes and also DMARC is the best solution that lets businesses protect their emails from illegitimate usage and cyber attacks.

DMARC is built upon two other authentication protocols: One of which is SPF (Sender Policy Framework) and another one is DKIM (DomainKeys Identified Mail). You should have SPF and DKIM on your Envelope From and Friendly Form domains before proceeding with DMARC.

DMARC (aka Domain-based Message Authentication, Reporting, & Conformance) DMARC is an email authentication standard that based on SPF & DKIM protocols, letting customer to get visibility into how their email domains are used, allowing to catch all the fraud emails that send from unauthorized server, besides this benefits it increases email deliverability, gives companies a trust high level that customers wish to communicate without receiving a fraud from them, makes companies not to lose their money on phishing, sending an email to the recipients inbox is also one of the advantages of using DMARC.

Now, You know already what is DMARC. So, Let’s understand SPF meaning?

SPF (aka Sender Policy Framework) allows domain owners to choose which email addresses one can send an email from with their domain- it is the “From” header of the email. SPF can catch the unauthorized servers where a hacker sends an email from, furthermore, it protects a real message from the domain owner. With SPF a receiver can consider the email authentic.

SPF record example

example.com v=spf1 mx ip4:1.1.1.1/32 include:_spf.example.net -all

DKIM (aka DomainKeys Identified Mail) DKIM is an email authentication standard that associated with a signature checker that a sender inserts into the email message.

Sender’s cryptographic signatures are designed for receivers to verify by using DNS-hosted public keys. If the signature is correct and checked DKIM identifies it as a reliable domain-level.

 

DKIM record example

example._domainkey  v=DKIM1; k=rsa; p=public_key

 

The DMARC protocol allows senders to publish policy records to manage the emails reach on inbox or spam box, or rejecting. The policy features that DMARC enables are:

 

As a matter of fact, these 3 protocols do an amazing job if all setup correctly.

 

P=none – None is monitor mode, that doesn`t prevent emails from getting into the spam box but only monitors them.

p= quarantine – Helps you send fraud email to the spam box.

P= reject – reject policy is what your company need to achieve high email protection. It doesn’t allow illegal emails to reach the receiver inbox or even spam box.

 

We will help you to build your DMARC record in less than 1 minutes with the help of our advanced email protection tools!

  1.  Go to the EasyDMARC website and generate your DMARC record with DMARC generator.DMARC-record-generator
  2. If You have multiple domains you need to generate your DMARC text record in your DNS for each sending domain.
  3. Set the DMARC policy to “none” indicating DMARC’s “monitor” mode.
  4. With DMARC in monitor mode, you can gather the information on your entire email ecosystem and see who is sending email on behalf of your brand, what emails are getting delivered, and what emails are not.
  5. Add a TXT record to your DNS service, it should be like this:

DMARC record example

_dmarc v=DMARC1;p=reject;sp=none;pct=100;adkim=r;aspf=r;rua=mailto:[email protected]; ruf=mailto:[email protected];rf=afrf;ri=86400;fo=1

How to set up DMARC record into DNS?

Go to Your hosted domain and find DS administrator to add Your DMARC record to DNS, after doing this you can easily monitor your domain. We suggest You use our domain that we can send You reports and you will know where email traffic comes from. Soon you will amaze at how much fraudulent emails are using your domain and how much fake users are trying to act like it`s You.

 

 

 

More like this article

September 23, 2020

Protect your account with 2-Factor Authentication

Two-factor authentication (also known as 2FA) is a method of electronic authentication, which adds an extra layer of security to your account in case your password is stolen. After you set up authentication in EasyDMARC, you’ll sign in to your account in two steps using: Step...

Read More
August 26, 2020

How to Implement DMARC with EasyDMARC

DMARC (Domain-based Message Authentication, Reporting, and Conformance) is a policy that protects organizations from Business Email Compromise attacks and allows them to receive DMARC reports from mail service providers.  Also, DMARC is an email authentication protocol, that is designed to give email domain owners...

Read More
August 21, 2020

How does DMARC work: why you should use DMARC?

Protecting your email domain can do more than just prevent hackers from sending embarrassing emails on your behalf. It can also help you build a trusted relationship with business partners and employees by assuring their information is secure. Research shows that phishing attacks are...

Read More