Create DMARC DNS Records for Email Authentication Generate DMARC DNS records for email authentication policy.

🔐

DMARC Record Generator

Generate DMARC DNS records for email authentication policy.

Enter your domain

Type your domain (e.g. example.com) in the domain field. The record will be published at _dmarc.example.com.

Choose policy

Select none (monitor only), quarantine (send to spam), or reject (block). Start with none to monitor before enforcing.

Generate and copy

Click Generate to create the DMARC TXT record. Copy it and add the record to your DNS zone.

Loading tool...

What Is DMARC Record Generator?

A DMARC Record Generator is a tool that creates a Domain-based Message Authentication, Reporting, and Conformance record, which helps email senders specify how receivers should handle authentication failures. Email administrators use it to define their domain's email authentication policy and configure reporting options. One specific problem it solves is the lack of control over unauthenticated emails sent on behalf of a domain, as it allows administrators to set a policy for handling such messages, whether it be to quarantine or reject them.

The tool generates a DMARC record in the format "_dmarc.domain IN TXT", which can then be added to the domain's DNS settings. What makes this tool different is its ability to customize the DMARC record with specific policies, such as "none", "quarantine", or "reject", and configure reporting options like aggregate reports via email. For example, administrators can set a policy of "quarantine" for 50% of unauthenticated emails using the pct option.

It also allows users to specify an email address for receiving reports, which helps with monitoring and troubleshooting DMARC-related issues. The generated record includes all the specified options, such as rua for reporting and pct for percentage-based policies, making it a convenient way to create a DMARC DNS entry that matches their domain's specific needs, ultimately helping to prevent spam and phishing attacks by creating an email DMARC policy that works with SPF and DKIM protocols.

Why Use DMARC Record Generator?

Policy selection
Report configuration
Percentage rollout
Instant copy

Common Use Cases

Anti-phishing

Reduce domain spoofing by telling receivers how to handle failed SPF/DKIM.

Email auth policy

Define how receivers should treat messages that fail authentication checks.

Monitor first

Use p=none with rua to collect aggregate reports before enforcing quarantine or reject.

Compliance

Meet requirements for DMARC in regulated industries or partner agreements.

Technical Guide

The tool uses React to manage state and handle user input, storing values in variables like domain, policy, rua, pct, output, and copied. When the generate button is clicked, it calls the generate function, which constructs a DMARC record string by concatenating parts based on user input, using JavaScript's array push method and JSON.stringify to format the output. The generated record includes the protocol version v=DMARC1, policy, and optional rua and pct values if specified. The tool utilizes TypeScript for type checking and uses React Hooks like useState and useCallback to optimize performance.

Under the hood, it relies on browser APIs like copyToClipboard to handle copying the generated DMARC record to the user's clipboard. The code also imports utility functions from a separate module, including cn for conditional class names and copyToClipboard for handling clipboard operations. When generating the DMARC record, it uses string concatenation and template literals to build the output string in the format _dmarc.domain IN TXT. The tool handles user input through HTML form elements like text inputs, buttons, and range sliders, using React's onChange event handlers to update state variables.

The generated DMARC record is displayed in a preformatted text block, allowing users to easily copy and paste it into their DNS settings. The tool uses CSS classes from the glass-input and glass-button modules to style its user interface components. When the copy button is clicked, it calls the copy function, which attempts to copy the output string to the clipboard using the copyToClipboard API, displaying a success message if the operation is successful.

Tips & Best Practices

1
Start with p=none
2
Set up rua for reports
3
Use pct for gradual rollout
4
Configure SPF and DKIM first

Related Tools

SHA-256 Hash Generator

Generate SHA-256 hash digests.

🔐 Encoding & Crypto

SPF Record Generator

Generate SPF DNS TXT records for email authentication.

🔐 Encoding & Crypto

DKIM Record Generator

Generate DKIM DNS TXT records for email signing.

🔐 Encoding & Crypto

DANE/TLSA Record Generator

Generate DANE TLSA DNS records for certificate authentication.

🔐 Encoding & Crypto

Frequently Asked Questions

Q Is the DMARC generator free?

Yes. The tool is free and runs entirely in your browser. No signup or uploads required.

Q What policy should I start with?

Start with p=none to monitor only. Add rua for aggregate reports. Move to quarantine or reject after reviewing data.

Q What does rua mean in DMARC?

rua is the address for aggregate reports. Receivers send XML summaries of authentication results to this email.

Q Do I need SPF and DKIM for DMARC?

DMARC works best with both SPF and DKIM configured. It tells receivers what to do when those checks fail.

Q Can I use this on mobile?

Yes. The tool runs in any modern browser on desktop or mobile.

About This Tool

DMARC Record Generator is a free online tool by FreeToolkit.ai. All processing happens directly in your browser — your data never leaves your device. No registration or installation required.