Email authentication, translated
Stop your emails landing in spam.
Mailbox providers already tell you who's sending as your domain, in XML files nobody reads. DMARCPath reads them, in plain English, and flags the moment someone spoofs you.
One domain free forever · no card · reports within 48 hours
| Sender | DMARC | Volume | Status |
|---|---|---|---|
Google Workspace 209.85.220.41 | 12,482 | Approved | |
Mailchimp 198.2.128.10 | 3,207 | Approved | |
Amazon SES 54.240.27.155 | 1,932 | Approved | |
Unknown sender 185.234.219.7 | 47 | Flagged |
one of yesterday's reports, translated
Why now
Gmail and Yahoo changed the rules.
Since February 2024, the two biggest inbox providers require email authentication, and quietly downrank everyone who lacks it. Businesses that never thought about email infrastructure are watching invoices and quotes disappear into spam.
Google & Yahoo began enforcing sender authentication
the volume at which DMARC became mandatory
the spam-complaint ceiling before Gmail blocks you
Meanwhile, anyone on the internet can put your domain in the From line of an email. Without an enforced DMARC policy, nothing stops them, and your customers can't tell the difference. The fix is a policy called p=reject. Getting there without breaking your own email is what DMARCPath does.
How it works
One DNS record in. Plain English out.
Paste one TXT record
We generate it with your private reporting address inside. Two minutes at any DNS host. We have exact guides for all of them.
v=DMARC1; p=none; rua=mailto:[email protected]; fo=1
We translate the reports
Providers send daily XML about everyone mailing as your domain. You see it as senders, verdicts, and fixes, never as XML.
Mailchimp is failing DKIM. Its key was never added. Here's the fix →
Tighten to p=reject, safely
Approve your real senders. When everything passes for two weeks, we hand you the next record: quarantine, then reject. Spoofing stops working.
All 4 senders approved · 99.1% passing over 14 days
Free check · no signup
Is your domain protected right now?
We'll read your DMARC record live and explain every tag: what's right, what's risky, and the exact fix.
also free: SPF lookup counter · DKIM checker · report analyzer
For agencies
Run client domains? This is your retainer item.
Monitor every client domain from one dashboard: bulk import, read-only share links clients can check anytime, and white-label monthly reports that make deliverability a line item you own.
- ✓10-30 domains on one plan, from $39/mo
- ✓Bulk import: paste a list of client domains
- ✓White-label monthly PDF reports
- ✓Per-domain share links, no client accounts needed
Email authentication report · June 2026
client-domain.com
Prepared by Your Agency
Questions
Frequently asked questions
- What is DMARC and why do I suddenly need it?
- DMARC lets you tell Gmail, Outlook and Yahoo what to do with email that pretends to be from your domain but fails authentication. Since February 2024, Google and Yahoo require it for bulk senders, and weight it for everyone. No DMARC increasingly means the spam folder.
- I got a DMARC record from a blog post. Isn't that enough?
- A p=none record with no one reading the reports is a smoke alarm with no batteries. The record only starts protecting you at p=quarantine or p=reject, and getting there safely requires actually watching the reports. That's the part we automate.
- Do I need to be technical to use this?
- You need to be able to paste a DNS record (we show exactly where for every major host). Everything after that is plain English: "Mailchimp is failing DKIM: here's the fix" instead of XML and acronyms.
- What does it cost?
- One domain is free forever, with 14 days of history. Paid plans start at $15/month for longer history and alerts; agencies get 10 domains, white-label reports, and client share links for $39/month.
Find out who's sending as your domain.
Paste one DNS record today; read your first report in plain English tomorrow. One domain free forever.
no card · 2-minute setup