DMARCER
Sign in Get started
FAQ

Email security questions, answered

The questions people actually ask when their email is failing or their domain is being abused - with the quickest route to a fix.

Why are my emails going to spam or not being delivered?

The most common causes are email-authentication problems: a missing or broken SPF, DKIM or DMARC setup, an SPF record over the 10-lookup limit, or a sending service that isn't authorised for your domain. Mailbox providers increasingly reject or spam-folder mail that fails these checks. The fastest way to find the exact cause is a free domain check, which scores your domain and lists the specific issues.

How do I stop people sending email that looks like it's from my domain?

Publish SPF and DKIM correctly, then move your DMARC policy to enforcement (p=reject). At enforcement, mailbox providers refuse mail that fails authentication for your exact domain, so spoofed messages don't get delivered. DMARCER guides you to enforcement safely, without blocking your own legitimate mail.

How do I check my domain's email security?

Run a free check at dmarcer.net/check - enter your domain and you get a score out of 100, the specific problems found across SPF, DKIM, DMARC, MTA-STS, TLS-RPT and DNSSEC, and how you compare to your industry. No signup needed.

What is a good email-security score?

Across our benchmark of tens of millions of domains, the average is only around 21 out of 100 - so most domains are wide open. A well-configured domain (SPF and DKIM aligned, DMARC at p=reject, MTA-STS enforced) scores far higher. The check shows exactly which points you're missing and why.

How do I set up SPF, DKIM and DMARC?

Start with the plain-English explanations at dmarcer.net/how-it-works, then use the per-vendor source guides (Google Workspace, Microsoft 365, SendGrid and more) at dmarcer.net/guides. The free generators build valid records for you to publish.

What's the difference between DMARC p=none, quarantine and reject?

p=none only monitors - it protects nothing. p=quarantine sends failing mail to spam. p=reject refuses it outright. Real protection begins at quarantine or reject; the goal is to reach p=reject safely once all your legitimate senders are authenticated.

Find out what's wrong in seconds

Run a free check - get your score out of 100 and the exact issues on your domain.

Check your domain
Free domain check

Check your domain security

See how your domain's security compares to your competitors.