DMARC Policy (p=)
The DMARC tag that tells receivers how to treat mail that fails authentication: none, quarantine, or reject.
The `p=` tag in a DMARC record is the enforcement instruction. `p=none` asks receivers to deliver failing mail normally and just send reports back; it is the safe starting point during rollout. `p=quarantine` tells receivers to route failing mail to spam. `p=reject` tells them to block it outright at SMTP time, which is the policy required for full BIMI eligibility and the only one that actually stops spoofing. Most domains progress none, then quarantine with a low pct, then reject, monitoring DMARC aggregate reports at each step to avoid breaking legitimate mail.
Reference
Related terms
See also
Referenced on
- DKIM Record Checker
- DMARC Record Checker
- DNS Security Dashboard
- Email Authentication by the Numbers: SPF, DKIM, and DMARC Adoption from 262 Million DNS Records
- Email Header Analyzer
- Email Tester
- Free DNS & Network Tools
- Free DNS Lookup Tool
- Home
- How to Report Phishing Emails and Websites Hosted on an IP Address
- How to Report Spam From an IP Address: Abuse Reports for Unsolicited Email
- How to Set Up a Custom Domain for Your Email (Google Workspace, Microsoft 365)
- Misconfigured SPF Records: Too Many Includes, Missing -all, and Other Common Mistakes
- Privacy Policy - DNS Checker
- SMTP Error Codes Reference and Fixes
- SPF, DKIM, and DMARC: How DNS Protects Your Email From Spoofing
- Terms of Service - DNS Checker
- Understanding DNS Record Types: A, AAAA, CNAME, MX, TXT, and More