Skip to main content
+380 (44) 201-01-02
Technical support
ENG

SPF, DKIM, and DMARC for email

SPF, DKIM, and DMARC play a key role in protecting the sender's mail server from spam. They provide confirmation of the sender's domain and verify the authenticity of email messages, which helps avoid delivery issues or spam detection.

All records are registered on the side of the active NS-servers of the domain, the records have the TXT type

If the following NS are specified for your domain, use the instruction

ns1.mirohost.net

ns2.mirohost.net

ns3.mirohost.net

If the initial NS of the domain registrar Imena.ua is specified for your domain, you can use the instruction

For the "Mini", "Site", "Portal" or eVPS tariffs, the DKIM record is generated through the hosting panel, for this you can use the following instruction In case the If you have a dedicated server with a Smart panel tariff, write to our technical support, we will generate it for you, register the key on the server and provide a record to add it to the DNS zone settings

To obtain SPF and DMARC records, you can use online record generators, for example for SPF or another one of the options. [DMARC] Record Generators (https://mxtoolbox.com/DMARCRecordGenerator.aspx)

A standard SPF record looks like @ TXT v=spf1 +a +mx include:*** ~all

If you use third-party services for mailing lists, but at the same time use our mail server mx1.mirohost.net for working with mail, we recommend that you specify a record from the mailing service after include:, since the +mx value already pulls up the domain's mail server.

A standard DMARC record looks like this: _dmarc TXT v=DMARC1; p=none; where

==v== - DMARC version

==p== - domain rule:

  • «none» - this setting allows the receiving server to not take any active actions. This mode is intended primarily for monitoring and does not provide full protection for your domain.

  • «quarantine» - when using this mode, emails will be moved to the Spam folder on the receiving server, providing a limited level of protection.

  • «reject» - this mode involves rejecting all unwanted emails on the receiving server, which means they will not be delivered to recipients, which provides the highest level of protection for your domain.

You can also add the parameter ==rua == to specify the mailbox to which daily reports should be sent. You can specify multiple mailboxes separated by commas, for example, rua=mailto:first@mail.com,mailto:second@mail-two.com

Before configuring DMARC, be sure to add SPF and DKIM records. It is important to note that DMARC should be configured no earlier than 48 hours after SPF and DKIM settings.

SPF (Sender Policy Framework) is an extension to the SMTP email sending protocol, defined in RFC 7208. This authentication mechanism checks the sender's server to confirm the legitimacy of the message.

DKIM (DomainKeys Identified Mail) is an electronic authentication method based on digital signature verification.

DMARC is an effective email processing algorithm that provides an additional level of protection and control over your mailings. Thanks to it, you can provide a more reliable email verification mechanism.