How to configure DMARC
- Category : cPanel Tutorials
- Posted on : Aug 06, 2019
- Views : 2,687
- By : CentrioHost
DMARC (Domain-based Message Authentication, Reporting and Conformance) is an e-mail authentication method designed to help reduce e-mail abuse, such as spam. It builds upon the SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) authentication methods to provide e-mail senders and recipients a more reliable way to exchange messages.
You can use cPanel's DNS Zone Editor to add DMARC settings to your DNS records. You can also use cPanel to configure your mailing lists to be compatible with DMARC.
The easy process (What we do here at centriohost.com)
Just create the TXT record for "_dmarc.centriohost.com" > TXT > "v=DMARC1; p=quarantine; rua=mailto:dmarc_report@centriohost.com; pct=100; sp=quarantine" in cPanel. Replace the email address dmarc_report@centriohost.com with own domain name and centriohost.com DNS entries with own record. So your domain is now fully DMARC protected. Now come to the explanation part....
CONFIGURING A DMARC TXT RECORD IN DNS
To enable DMARC for your domain, you must add a TXT record to your domain's DNS entries that contains the DMARC configuration data. To do this, follow these steps:
- Log in to cPanel.
- In the Domains section of the cPanel home screen, click Advanced DNS Zone Editor.
- Under Select a Domain, select the domain you want to modify.Usually, this is your primary domain.
- Under Add a Record, in the Name text box, type _dmarc.When your cursor leaves this text box, cPanel automatically adds the domain name to _dmarc, for example, _dmarc.example.com.
- In the TTL text box, type 14400.
- In the Type list box, select TXT.
- In the TXT Data text box, type the DMARC configuration line.DMARC is not yet a fully standardized protocol. As a result, different providers handle DMARC policies in different ways. You may have to experiment with various DMARC configurations to find the one that works best for your domain. Here are some example DMARC configurations:
- Enable DMARC “monitor mode”. With this configuration enabled, the specified e-mail address (in the mailto setting) receives daily reports from providers regarding how many messages were received and whether or not they passed policy checks:
v=DMARC1;p=none;rua=mailto:postmaster@example.com
Instruct the recipient to quarantine all messages (100%) that do not pass policy checks:
v=DMARC1;p=quarantine;pct=100;
Instruct the recipient to reject half of all messages (50%) that do not pass policy checks. The remainder should be quarantined:
v=DMARC1;p=reject;pct=50;
- Enable DMARC “monitor mode”. With this configuration enabled, the specified e-mail address (in the mailto setting) receives daily reports from providers regarding how many messages were received and whether or not they passed policy checks:
- Click . cPanel adds the TXT record for DMARC.
Testing the new DMARC DNS record
After you add the DMARC TXT record and allow time for DNS propagation, you should test that the record is correctly configured. Follow the appropriate procedure below for your computer's operating system.
MICROSOFT WINDOWS
If you are using Microsoft Windows, type the following command at the command prompt:
nslookup
At the nslookup > prompt, type the following commands. Replace example.com with your own domain name:
set type=txt _dmarc.example.com
You should see output that resembles the following (the exact text varies based on your own settings):
_dmarc.example.com text = "v=DMARC1;p=none;rua=mailto:postmaster@example.com"
LINUX AND MAC OS X
If you are using Linux or Mac OS X, type the following command at the command prompt. Replace example.com with your own domain name:
dig +short txt _dmarc.example.com
You should see output that resembles the following (the exact text varies based on your own settings):
"v=DMARC1; p=none; rua=mailto:postmaster@example.com"
CONFIGURING MAILING LISTS (MAILMAN) FOR DMARC
If you administer a mailing list, you may encounter problems such as:
- Mailing list messages are marked as spam.
- Mailing list messages do not reach recipients at all.
To help improve the likelihood of mailing list messages arriving at their correct destination, you can configure a mailman setting in cPanel to make your list DMARC-compatible with other providers.
To do this, follow these steps:
- Log in to cPanel.
- In the Email section of the cPanel home screen, click Mailing Lists.
- Under Current Lists, locate the mailing list you want to configure, and then click Manage. The mailman General Options page appears.
- Under General list personality, locate the Edit from_is_list setting.
- You will probably need to send some test messages to determine the optimal setting for your mailing list:
- Try the Wrap Message option first, click Submit Your Changes, and then send some test messages.
- If the messages are rejected by the recipient or marked as spam, try the Munge From option, and then click Submit Your Changes.
MORE INFORMATION
To view the official DMARC web site, please visit http://dmarc.org.
Categories
Subscribe Now
10,000 successful online businessmen like to have our content directly delivered to their inbox. Subscribe to our newsletter!Archive Calendar
Sat | Sun | Mon | Tue | Wed | Thu | Fri |
---|---|---|---|---|---|---|
1 | 2 | 3 | 4 | 5 | 6 | |
7 | 8 | 9 | 10 | 11 | 12 | 13 |
14 | 15 | 16 | 17 | 18 | 19 | 20 |
21 | 22 | 23 | 24 | 25 | 26 | 27 |
28 | 29 | 30 | 31 |
Recent Articles
-
Posted on : Jul 25
-
Posted on : Jul 07
-
Posted on : Apr 07
-
Posted on : Mar 19
Optimized my.cnf configuration for MySQL 8 (on cPanel/WHM servers)
Tags
- layer 7
- tweak
- kill
- process
- sql
- Knowledge
- vpn
- seo vpn
- wireguard
- webmail
- ddos mitigation
- attack
- ddos
- DMARC
- server load
- Development
- nginx
- php-fpm
- cheap vpn
- Hosting Security
- xampp
- Plesk
- cpulimit
- VPS Hosting
- smtp
- smtp relay
- exim
- Comparison
- cpu
- WHM
- mariadb
- encryption
- sysstat
- optimize
- Link Building
- apache
- centos
- Small Business
- VPS
- Error
- SSD Hosting
- Networking
- optimization
- DNS
- mysql
- ubuntu
- Linux