What kind of DMARC policy for unused domains?

hungdh · October 21, 2020, 8:10am

Hello,
My companies have 10 domains but we only use ONE of 10 domains for sending mail.
So in DMARC record for those 9 unused domains, should I just simply apply “p=reject” for them?

opvind · October 21, 2020, 2:25pm

Unused domains should be marked as such using SPF and DMARC DNS TXT records:
@ IN TXT “v=spf1 -all”
_dmarc IN TXT “v=DMARC1; p=reject; rua=mailto:…”

The rua tag and reporting address can be omitted if you do not want to know about attempted abuse.

beekeeper · October 24, 2020, 10:19am

Something else that you might look at, if you haven’t already, is creating a null MX record for the domains

hungdh · October 28, 2020, 3:09pm

Hi beekeeper,
Thanks for your suggestion.
Unfortunately, my domain provider does not support null MX record.
I also read some articles which suggest to use private IP or “localhost.” instead of . in target host.

Topic		Replies	Views
Question about mail servers and DMARC Technical Help	4	1209	November 6, 2021
How to configure a domain that only receives email? Technical Help	5	149	April 16, 2024
Stopping botnet spamming with your domain?	4	2106	September 6, 2019
SPF record for similar domains to NOT allow emails?	1	903	May 17, 2020
What should I do if my company only use G Suite to send mail? Technical Help	3	827	October 30, 2020

What kind of DMARC policy for unused domains?

Related topics