
In order for your email system to function correctly and securely, certain special records must be configured on the DNS (Domain Name System). These records inform other servers on the internet how to send and receive emails on your behalf. To use corporate email, you need to configure your DNS settings as follows.
MAIL DNS RECORDS | |||
---|---|---|---|
MX Records | |||
Type | Name | Content | Priority |
MX | @ | smx.maillb.com | 10 |
MX | @ | smx.maillb.com | 1000 |
TXT Records | |||
Type | Name | Content | |
TXT | _dmarc | "v=DMARC1; p=quarantine; adkim=s; aspf=s" | |
TXT | @ | "v=spf1 a mx ip4:185.46.40.0/22 include:gmail.com ~all" | |
PTR Records | |||
Type | Name | Content | |
TXT | 7 | sgw.maillb.com | |
TXT | domain._domainkey | "v=DKIM1; k=rsa; n=1024; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQD+kRbl45KL7y0+ nIHfUlo8909QPs6rdsDz8TR7jjADX8UGe9sWWEFiJeYysCSWDZzNmfarYDCiWeU2/EMIC2GfKJ9Qxm JXBGCe7nOOnswPRJuQbdUWLQ6GkfUGYaXZT9nJs+UnI3LlSPy9HD7W/K19VJ37JCOjczurxNHiGE eTBwIDAQAB" |
|
A Records (Host) | |||
Type | Name | Content | |
A | mail.maillb.com | 185.46.43.2 | |
A | webmail.maillb.com | 185.46.43.3 | |
A | pop3.maillb.com | 185.46.43.4 | |
A | imap.maillb.com | 185.46.43.5 | |
A | smtp.maillb.com | 185.46.43.6 |
An MX (Mail Exchanger) record is the most fundamental DNS entry that tells the internet where to deliver emails sent to your domain. Think of it as the digital address for your email inbox.
Whenever someone sends an email to you (at @yourdomain.com
), the sender's server first looks up your domain's MX records. It then delivers the email to the server specified in those records. This ensures your emails arrive at the correct destination to be delivered to you.
10
/ Server: smx.maillb.com
1000
/ Server: smx.maillb.com
TXT (Text) records are versatile DNS entries that hold text-based information about your domain. In email systems, they are primarily used to prove that the emails you send are legitimate and actually come from you. This plays a critical role in preventing spam and phishing attacks.
SPF (Sender Policy Framework) is a security measure that lists which servers are authorized to send emails using your domain name. The receiving server checks this record to verify if an incoming email originates from an authorized server. This prevents others from sending fraudulent emails on your behalf.
"v=spf1 a mx ip4:185.46.40.0/22 include:gmail.com ~all"
"The authorized senders for this domain are: the servers listed in the A and MX records, any IP address between 185.46.40.0
and 185.46.43.255
, and servers authorized by gmail.com
. Treat emails from all other sources as potentially suspicious (~all
)."
DKIM (DomainKeys Identified Mail) adds a digital signature (a seal) to your outgoing emails. The receiving server validates this signature against a public key published in your DNS. If the signature is valid, it confirms that the email has not been altered in transit and was genuinely sent from your server.
domain._domainkey
/ "v=DKIM1; k=rsa; ..."
This is the public encryption key used to sign your emails. Receiving servers use this key to verify the authenticity of the emails you send.
DMARC (Domain-based Message Authentication, Reporting, and Conformance) is a policy that instructs receiving servers on how to handle suspicious emails that fail SPF and DKIM checks. You can tell them to quarantine, reject, or do nothing with these emails. It also enables reporting, providing you with feedback about emails sent using your domain.
_dmarc
/ "v=DMARC1; p=quarantine; adkim=s; aspf=s"
"For emails sent on my behalf that fail SPF or DKIM checks, please 'quarantine' them (p=quarantine
), which likely means moving them to the spam folder. Additionally, apply strict rules for DKIM and SPF alignment (adkim=s
; aspf=s
)."
A PTR (Pointer) record indicates which domain name is associated with a specific IP address. It is often called a "Reverse DNS" lookup because it does the opposite of an A record.
To combat spam, many email servers check whether the IP address of an incoming email has a valid PTR record. This is an important step in verifying the sender's identity and reduces the likelihood of your emails being marked as spam.
An A (Address) record is the most basic type of DNS record. It points a domain name (e.g., mail.maillb.com
) to an IP address (e.g., 185.46.43.2
).
When you connect to your email server through an email client (like Outlook or Gmail) or a web browser, these records ensure you are directed to the correct server's IP address.
The addresses mail.maillb.com
, webmail.maillb.com
, pop3.maillb.com
, imap.maillb.com
, and smtp.maillb.com
are all directed to the server at the IP address 185.46.43.2. This indicates that all email functions—such as sending (SMTP), receiving (POP3/IMAP), and web-based access (webmail)—are handled by the same server.