Free DMARC Checker
Check your DMARC, SPF & DKIM in seconds.
Enter your domain to see whether spoofers can send email as you — and exactly what to fix. Free, instant, no signup.
Free instant check — no signup, no credit card.
What is DMARC, in one paragraph?
DMARC (Domain-based Message Authentication, Reporting & Conformance) is a DNS record that tells receiving mail servers how to handle email claiming to be from your domain. It builds on two older standards — SPF (which lists who may send for you) and DKIM (which signs your mail) — and adds a published policy plus reporting. With a strong DMARC policy (p=reject), an attacker cannot send phishing email that appears to come from your domain. With no DMARC record, or a monitor-only p=none policy, they can.
What this checker tells you
- Whether a DMARC record exists and what policy it enforces (none / quarantine / reject).
- Whether your SPF record is present and valid.
- Whether DKIM signing is detectable for your domain.
- The single most important fix to make next — the "key finding".
How to check and fix your DMARC record
1. Run the free check
Enter your domain above and run the instant DMARC, SPF and DKIM lookup — no signup needed.
2. Read your records
See whether each of SPF, DKIM and DMARC passes, warns or fails, with the key finding highlighted.
3. Identify the gap
The checker names the exact problem — no DMARC record, a permissive p=none policy, or a missing SPF record.
4. Apply the exact fix
Create a free account to get the precise DNS records to paste into your DNS panel, generated for your domain.
5. Monitor continuously
Email authentication drifts when new tools start sending for you. VeruMail watches 24/7 and alerts you before deliverability drops.
Understand your result
Read the plain-English guide for the issue the checker found:
Frequently asked questions
What is a DMARC checker?
A DMARC checker looks up your domain's DNS records and reports whether DMARC, SPF and DKIM are correctly configured. VeruMail's checker reads your published DMARC policy, checks SPF and DKIM, and tells you in plain language whether senders can spoof your domain — in seconds, with no signup.
Is this DMARC check free?
Yes. The DMARC, SPF and DKIM lookup is completely free and requires no signup or credit card. You only create a free account if you want the full AI analysis with the exact DNS records to fix the issues and continuous monitoring.
What is the difference between SPF, DKIM and DMARC?
SPF lists which servers may send mail for your domain. DKIM cryptographically signs your messages so receivers can verify they were not altered. DMARC ties SPF and DKIM together with a published policy that tells receiving servers what to do when a message fails — and where to send reports. All three are needed for reliable inbox placement and anti-spoofing.
What does DMARC p=none mean?
p=none is monitor-only mode: receivers report on messages that fail DMARC but still deliver them. It gives visibility but provides no protection against spoofing. To actually block impersonation you move to p=quarantine and then p=reject once your legitimate mail passes consistently.
Do Gmail and Microsoft require DMARC?
Yes. Since February 2024, Google and Yahoo require a DMARC record for bulk senders (those sending roughly 5,000+ messages per day), and Microsoft began enforcing the same expectation for high-volume senders to Outlook.com in 2025. Without DMARC, bulk mail is increasingly rejected or sent to spam.
How do I fix a failing DMARC record?
Publish a DMARC TXT record at _dmarc.yourdomain.com, ensure SPF and DKIM are aligned with your From domain, start at p=none to gather reports, then tighten to p=quarantine and p=reject. VeruMail generates the exact records for your domain and monitors them so you are alerted the moment anything drifts.
Get the exact records to fix your domain
Create a free account for the full AI analysis, the precise DNS records for your domain, and 24/7 monitoring of your first domain — free, forever.
Start free