This instructional article will demonstrate the Neostrada configuration process of Sender Policy Framework (SPF), DomainKeys Identified Mail (DKIM) Signatures to ensure Neostrada passes the DMARC alignment check and eliminate spam from your domain and increase security.
The SPF record identifies the mail servers and domains that are allowed to send email on behalf of your domain. The DKIM record, on the other hand, is a specially formatted DNS TXT record that stores the public key the receiving mail server will use to verify a message’s signature. These email authentication methods will be used to prove to ISPs and mail services that senders are truly authorized to send email from a particular domain and are a way of verifying your email sending server is sending emails through your domain.
The process of configuring SPF
In order to authenticate Neostrada on SPF, please follow these steps:
- Login and head to your DNS Zone provider
- Create a new TXT record
- Input the DNS name as @ or your domain name
- Input the DNS value as v=spf1 include:spf.totaalholding.nl ~all
- Save the record
- Wait up to 72 hours to allow your DNS to process the changes
Screenshot below will show you the example of the SPF record. We’ll be using CloudFlare for this example.
Important Note: Each domain must have only one SPF TXT Record. If you have multiple SPF Records, SPF will return a PermError.
If you are using multiple IPs, ESPs, Third-Party services for your various email strategies, you should include them in a single SPF Record.
E.g v=spf1 ip4:18.57.156.221 include:spf.totaalholding.nl include:thirdpartyservice.com ~all
The process of configuring DKIM:
In order to authenticate Neostrada on DKIM, you need to create a TXT record. Please follow these steps:
- Login to Neostrada
- Head to Email > Email Deliverability
- Choose your domain and click Manage
- In this window,s you will be given a DKIM record with a TXT format. Copy the details
- Login and head to your DNS Zone provider
- Create a new TXT record
- Input the DNS name as default._domainkey
- Input the DNS value as you have occupied from Value section
- Save the record
Screenshot below will show you the example of the DKIM record.
Congratulations, you now successfully authenticated your outgoing mail stream from Neostrada with SPF and DKIM.