FAQ: Understanding DMARC/Getting Started
Q: Where should I send DMARC reports for my domain’s data to get into dmarcian?
A: Please see the ‘Add DMARC’ area on the UI for the address that these reports should be sent to. It is specific to your organization.https://dmarcian.com/start-dmarc/
Q: Do you have a getting-started guide?
A: Yes! Here is a general starting point: https://dmarcian.com/start-dmarc/ and if you’re already beyond that, go to https://dmarcian.com/getting-started-with-dmarcian/
Q: Does dmarcian sit in line or impact mail flow?
A: No, dmarcian parses and displays DMARC reports.
Q: I have added a DMARC record to the DNS, but your app still shows “no DMARC record”.
A: The most common mistake made when creating a DMARC record is failing to add an underscore “_” to the front of the word “dmarc” in the “hostname” field. https://dmarcian.com/start-dmarc/
Q: Why do I need to point my DMARC records to dmarcian?
A: You don’t need to, but that is the most reliable way to get data in to your views at dmarcian. If you set up the DMARC record to point at your own environment and then forward to dmarcian, you must make certain that the forwarded messages themselves still pass DMARC. We often see data problems related to breakage in the forwarding rules on the customer end; pointing the record to dmarcian is simpler and more reliable.
Q: I hear that DMARC can help determine if and who is spoofing your domain. How do I determine if that is happening and what steps is there to stop it?
A: Yes, DMARC provides a reporting component that will expose who and what is sending mail using your domain. This data will be inclusive of legitimate sources and those that are not authorized to send. These details will show up in the Threat/Unknown Category. In addition to the Threat/Unknown categorization, we will show your authentication results for legitimate mail, as additional actions are often required to ensure you are fully covered with SPF and DKIM. The end result of a successful DMARC deployment is that spear fishing and spoofing are greatly reduced.
Q: Why are your reports showing traffic for domains that I do not have registered as subdomains?
A: Any email traffic that shows up under an organization domain, e.g. your_domain.com, will show up in our reports. This can include both legitimate sources you may not yet be aware of and fraudulent email. Fraudulent email will not pass DMARC and you are not charged for those domains. Email from any domain under your organizational domain that passes DMARC will count towards your email volume and domain count totals.