<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=7086586&amp;fmt=gif">
rheintecblue

How do I easily check my correct e-mail & DNS configuration?

To prevent your email address from being misused on the Internet and others from sending malicious emails under your name, there are 2 important aspects that you must observe:

  • Correct DMARC configuration
  • Correct DNS-Sec configuration
dmarc policy

Determine correct settings

email security icon

DMARC Check

DMARC is actually made up of SPF & DKIM, two security mechanisms in the email environment that prevent emails from being forged. The combination of both makes your emails unforgeable and shows others that you have your IT under control.

Check DMARC now
dns security

DNS-SEC Check

DNS is the telephone book of the Internet so that the correct IP can be assigned to your domain. To be sure that the answer is correct, it is important to clearly sign the answer as coming from you.

Check DNS-SEC now

What should the entries look like?

No red entries should be visible for either check, neither in the DMARC nor in the DNS-SEC check. If you want to see what a correct entry looks like, compare it with our domain (rheintec.io).

dmarc-check

DMARC & SPF Report

Here you can see a correctly defined DMARC and SPF entry.

DMARC

The point "p=reject" is particularly important. This may also be set to "quarantine", but never to "none".

SPF

It is important here to have clear and as few defined IP addresses or sender domains as possible. The entry should always end with "-all", but not "~all".

Get Help
dnssec-entry-3

DNS-SEC Report

Here you can see a correctly defined DNS-SEC entry.

It is important that everything is green here. If this is not the case, you must inform your registrar of your domain-specific DS record so that it is entered accordingly in the top-level domain.

Get Help