Search Our Database

How to prevent emails from being classified as spam?

Last updated on |
under
Spam & Content Filtering, FAQ
|
by

Introduction

Implementing SPF, DKIM, and DMARC records is crucial for enhancing email security and ensuring better email deliverability. These DNS records help verify the authenticity of emails sent from your domain, reducing the risk of email spoofing and phishing attacks. SPF (Sender Policy Framework) verifies that emails are sent from authorized servers, DKIM (DomainKeys Identified Mail) adds a digital signature to confirm message integrity, and DMARC (Domain-based Message Authentication, Reporting & Conformance) allows domain owners to specify how unauthenticated emails should be handled. Together, they improve your domain’s reputation and protect your recipients from malicious emails.

 

Prerequisites

  • Access to your domain’s DNS management panel.
  • Basic understanding of DNS records and email authentication.

 

Step-by-step Guide

Step 1: Set Up a Sender Policy Framework (SPF) Record for Your Domain

  • Access your DNS management panel, usually provided by your domain registrar or hosting provider.
  • Create a new TXT record with the following details:
    • Name: <yourdomain.com> (replace with your actual domain name)
    • Type: TXT
    • Value: “v=spf1 include:_spf.yourdomain.com ~all”
  • Save the changes.
Note: Ensure that a DNS PTR record is also configured for your domain to validate the SPF record. This maps your IP address to your domain name, further enhancing email deliverability.

 

Step 2: Set Up a DomainKeys Identified Mail (DKIM) Record for Your Domain

  • Generate a DKIM key pair (private and public keys) using your email server or a DKIM key generation tool.
  • Access your DNS management panel and create a TXT record with the following details:
    • Name: default._domainkey.<yourdomain.com> (replace with your actual domain name)
    • Type: TXT
    • Value: The public key generated in step 1, formatted as “v=DKIM1; k=rsa; p=<public-key>”.
  • Save the changes.

 

Step 3: Set Up a Domain-based Message Authentication, Reporting & Conformance (DMARC) Record for Your Domain

  • Access your DNS management panel and create a TXT record with the following details:
    • Name: _dmarc.<yourdomain.com> (replace with your actual domain name)
    • Type: TXT
    • Value: “v=DMARC1; p=reject; sp=reject; pct=100; adkim=s; aspf=s”
  • Save the changes.

Explanation of the DMARC Record Values:

  • v=DMARC1: Specifies the DMARC protocol version.
  • p=reject: Instructs the receiver to reject emails that fail DMARC checks.
  • sp=reject: Applies the same policy to subdomains.
  • pct=100: Applies the policy to 100% of the emails.
  • adkim=s: Enforces strict DKIM alignment.
  • aspf=s: Enforces strict SPF alignment.

 

Conclusion

By configuring SPF, DKIM, and DMARC records for your domain, you significantly enhance your email security and protect against spoofing and phishing attempts. These records help improve the trustworthiness and reputation of your domain, ensuring that your legitimate emails are delivered successfully.

Should you have any inquiries of the guidelines, please feel free to open a ticket through your portal account or contact us at support@ipserverone.com. We’ll be happy to assist you further.

Related Article