Monitor and implement DMARC for your domains

What is it?

As any email hosting customer knows, SPF and DKIM are extremely important for email reputation and preventing email spoofing. We’ve supported both from day one. Since SPF and DKIM are part of the Redmain email deployment process, we have an extremely high adoption rate from customers. The latest standard, DMARC, ties both SPF and DKIM together, allowing you to create domain policies on what email should be accepted (or rejected) based on the SPF or DKIM results. A number of ISPs (Google, Microsoft, Yahoo, etc) support DMARC and will obey the policies that you set in DNS.

While DMARC is truly a huge step forward, it’s highly complicated and risky to implement. If you set a DMARC policy without knowing all of your email sources (mailboxes, email marketing services, CRM, transactional email, server alerts, etc) you could potentially cause legitimate emails to be rejected. In addition, each ISP will deliver reports about your domain’s activity and show which domains and IP address have sent email on your behalf along with the SPF and DKIM results. The problem is that these reports are sent as XML files, making it incredibly hard to read and understand. That’s where Redmain’s DMARC service comes in.

How does it work?

Just contact us. After that, we’ll give you some instructions with a TXT record to insert into your DNS. Once verified, our services/tool will collect and parse the reports that are sent from each ISP and you’ll receive a weekly email digest of your DMARC alignment and statistics.

The goal is to monitor your DMARC alignment across your sending sources (Zoho, Google Apps, Newsletters, etc). Once you are confident that all of your sending sources are properly aligned according to DMARC, you can start to slowly set quarantine and reject policies for your domain.

Leave a Reply

Your email address will not be published. Required fields are marked *