diff --git a/roles/opendmarc/files/dmarc/IgnoreHosts b/roles/opendmarc/files/dmarc/IgnoreHosts
new file mode 100644
index 0000000..7160295
--- /dev/null
+++ b/roles/opendmarc/files/dmarc/IgnoreHosts
@@ -0,0 +1,4 @@
+127.0.0.1
+10.233.212.0/26
+::1
+2001:bc8:26c1:105::/64
diff --git a/roles/opendmarc/files/opendmarc.conf b/roles/opendmarc/files/opendmarc.conf
index 7cdcbcb..c10dd03 100644
--- a/roles/opendmarc/files/opendmarc.conf
+++ b/roles/opendmarc/files/opendmarc.conf
@@ -6,4 +6,6 @@ RejectFailures false
 Syslog true
 SyslogFacility mail
 UMask 0002
+IgnoreHosts /etc/dmarc/IgnoreHosts
+IgnoreAuthenticatedClients true
 UserID opendmarc
diff --git a/roles/opendmarc/tasks/main.yml b/roles/opendmarc/tasks/main.yml
index bf235cc..0b54fce 100644
--- a/roles/opendmarc/tasks/main.yml
+++ b/roles/opendmarc/tasks/main.yml
@@ -9,3 +9,18 @@
       dest: /etc/opendmarc.conf
   notify:
       - restart opendmarc
+
+- name: dmarc directory
+  file:
+      path: /etc/dmarc
+      state: directory
+
+- name: secondary configuration files
+  copy:
+      src: "./files/dmarc/{{ item }}"
+      dest: "/etc/dmarc/{{ item }}"
+  loop:
+      - IgnoreHosts
+  notify:
+      - restart opendmarc
+