Defaults.Exposed › Setup › DMARC

How to set up DMARC on Wix

Add a DMARC record in Wix DNS to tell receivers what to do with email that fails your SPF and DKIM checks.

Why this matters to your business

DMARC is the policy that ties SPF and DKIM together. It tells receiving mail servers what to do when an email claiming to be from your domain fails those checks — ignore it, send it to spam, or reject it outright — and it can email you reports showing who is sending (and forging) mail as you. In plain terms: DMARC is what actually stops criminals from impersonating your domain to scam your customers and staff. It’s free, and it turns SPF and DKIM from “nice to have” into real protection.

Do SPF and DKIM first

DMARC depends on SPF and DKIM. Set those up before, or alongside, DMARC. A DMARC record on its own — with no working SPF/DKIM — can cause your own legitimate email to be blocked. Start gently (see the policy note below) and tighten over time.

First, confirm Wix runs your DNS

DMARC is a DNS record, so it only works if your domain’s nameservers point at Wix. In your Wix account, open the domain and check its DNS settings (look for DNS / Records / Advanced, and the nameservers section). If it shows another company’s nameservers (a web host, Cloudflare, your registrar, your email provider), add the DMARC record there instead — adding it at Wix will have no effect.

What you’ll add

A single TXT record at a special host name: _dmarc.

A safe starting value, which only monitors and never blocks anything, is:

v=DMARC1; p=none; rua=mailto:[email protected]

• p=none = monitor only; nothing gets blocked yet. Good for the first few weeks.
• rua=mailto:... = where the summary reports are sent. Use a real mailbox you check.
• Once you’ve confirmed (via the reports and the free check) that your genuine mail passes, you can tighten the policy to p=quarantine (send fails to spam) and later p=reject (refuse fails outright).

Steps in Wix

1. Sign in to Wix and open your account’s Domains area.
2. Click the domain, then open its DNS settings (look for DNS / Records / Advanced).
3. Go to the TXT records section and choose to add a new TXT record.
4. In the Host Name field (sometimes labelled Name), enter exactly _dmarc (with the leading underscore). Do not type _dmarc.yourdomain.com — Wix appends your domain automatically.
5. In the Value / Text field, paste your DMARC string, e.g. v=DMARC1; p=none; rua=mailto:[email protected] (replace the email with a real address you monitor).
6. Leave TTL at the default.
7. Save.

Wix quirks people get wrong

• The host name is _dmarc, with the underscore. Leaving off the underscore, or typing the full domain after it, puts the record in the wrong place and DMARC won’t be found.
• No quotes. Paste the value plain; Wix adds the quoting itself. Don’t wrap it in "...".
• Only one DMARC record. There should be exactly one TXT record at _dmarc. If one already exists, edit it rather than adding a second.
• Start with p=none. Jumping straight to p=reject before SPF/DKIM are solid can block your own invoices and quotes. Monitor first, tighten later.
• Use a real reporting mailbox. The rua address must be one you can actually receive at.
• Allow time. DNS changes can take from minutes up to a couple of hours to take effect everywhere.

Verify it worked

Once saved, confirm your DMARC record is live and sensible with the free check on Defaults.Exposed. Enter your domain and it’ll tell you in plain language whether DMARC is set up correctly and what to do next. Your data is processed in the EU.

Done? Check your domain free to confirm it worked — and see your full grade across all 34 checks.