The relentless onslaught of spam continues to drive mail administrators up the proverbial wall. DMARC, the unofficial successor to SPF (Sender Policy Framework), holds the promise of more email legitimacy, but can it deliver? Here is how you can put DMARC to the test.<\/p>\n
<\/p>\n
Make sure you have your A\/AAA and MX records set up correctly. For IPv4 traffic, your DNS zone needs at least one record of type A pointing to an IPv4 address; for IPv6 traffic, you need at least one record of the type AAA pointing to a valid IPv6 record (currently, the latter one is optional, but this will change).<\/p>\n
DMARC relies on Sender Policy Framework (SPF). You will need a valid SPF record to set up DMARC. Make sure it’s one of the type TXT; the type SPF is deprecated. A valid SPF record could look something like this:<\/p>\n
\"v=spf1 ip4:12.23.34.567 ip4:34.43.24.65 a:smtp.yourdomain.tld a mx ?all\"<\/pre>\nIncrement your SOA serial number, save your changes and wait for your NS servers to catch up. (Your configuration changes may not reflect in testing tools immediately.)<\/p>\n
To validate or pre-validate your SPF syntax, head over to of these services:<\/p>\n
https:\/\/www.dmarcanalyzer.com\/spf\/checker\/<\/a><\/p>\n
https:\/\/vamsoft.com\/support\/tools\/spf-syntax-validator<\/a><\/p>\n
Step 3. Generate and test your DMARC record<\/h2>\n
We recommend the DMARC RECORD GENERATOR by MX TOOLBOX<\/a>\u00a0available at:<\/p>\n
https:\/\/mxtoolbox.com\/DMARCRecordGenerator.aspx<\/a><\/p>\n
Make sure you check out all options available in the wizard. Copy the generated record into a text editor and adjust the mailto: options to reflect your desired setup.<\/p>\n
Next, test your DMARC record thoroughly. We recommend the\u00a0DMARC Inspector by DMARcian<\/a>:<\/p>\n