What does ‘Maximum lookups exceeded’ mean?

SPF records only allow 10 ‘lookups’ to reduce the load on the email receivers side. The following mechanisms count as lookups: a mx include require ptr The ‘nested’ lookups also count. If you exceed this threshold, the items after the 10th lookup may (/probably will) not count as valid SPF sources. You will need to …

I do not have a DMARC record yet

The core of a DMARC implementation is your DMARC record. This is easy to setup and necessary to use DMARC Analyzer and see which systems are sending mail on behalf of your domain. You do not have a DMARC record yet and want to start with DMARC? With help of the DMARC Record Creator you …

What does the SPF failure mean?

When aligning sources in DMARC Analyzer it’s possible that you will see several failures. But what do all these failures mean? Below we created a legenda with all possible failures. SPF SPF records can contain multiple ‘mechanisms’. These are parts of the SPF record while describe (a set of) valid sending IP addresses for this …

Set up two factor authentication for additional security

DMARC Analyzer takes the security of your data very serious. We protect our systems with the latest techniques. For us this is obvious as your account is filled with valuable information describing your companies infrastructure. However next to the security we can implement, we also believe it is very important for our users to have …

What is forwarding within DMARC?

Forwarding is a bit of an edge case within DMARC. Forwarding happens when an email receiver forwards your email to another recipient. Log in on app.dmarcanalyzer.com and go to “DMARC aggregate reports” → “Per sending source” to see detailed statistics about your forwarded emails. There are two types of forwarding: 1. Manual forwarding Manual forwarding …

What is a DMARC Policy?

What is a DMARC Policy? A DMARC Policy tells the email receivers like Microsoft (Hotmail, Live, Outlook etc), Gmail, Yahoo! and other DMARC Internet Service Providers who adopted DMARC what to do if an email fails the DMARC check. There are three DMARC policies you can choose of if an email fails the DMARC checks. …

What is an Organizational Domain?

While implementing DMARC you will probably see the term ‘Organizational Domain’. This basically is your main domain combined with the domain extension. Examples: rep.dmarcanalyzer.com => dmarcanalyzer.com yourdomain.com => yourdomain.com yourdomain.co.uk => yourdomain.co.uk subdomain.yourdomain.com.au => yourdomain.com.au

Can I see the HTML of invalid messages?

DMARC Analyzer doesn’t store the body of Forensic reports by default. It is possible that privacy sensitive data is included in these emails. For analysis it will be harder as you don’t know which email cause your DMARC to fail. To fix this problem we introduced a new method to view the Forensic reports. When …

How to validate your SPF record

How to validate your SPF record? Setting up the correct SPF record is an essential part of your technical settings. This page explains how to check and validate if you have set up the SPF record correctly. Go to the following URL and fill in the domain you want to check and press Start. https://app.dmarcanalyzer.com/dns/spf …

Analyzing your Domain Report

This section explains how you should read the DMARC Analyzer Domain Report, the main report of our service. First, you should filter based on the domain you’d like to review. After filtering, you might see the results grouped like in the image below:   Title Description Green authentication results: DMARC compatible – fully aligned These …

How to validate a DKIM record

How to validate a DKIM record? Setting up the correct DKIM record is an essential part of your technical settings. This page explains how to check and validate your DKIM record correctly. You can check/validate your DKIM record by using our DKIM record Checker How to validate a DKIM record using the DMARC Analyzer – …