Overview
SPF, DKIM and DMARC are email authentication methods that prove your emails are genuine.
Without these, many providers will automatically mark your messages as spam or reject them entirely.
SPF – Sender Policy Framework
SPF defines which servers are allowed to send email on behalf of your domain.
What SPF does
-
Prevents spoofing
-
Confirms sending server legitimacy
Example SPF record
Only one SPF record should exist per domain.
DKIM – DomainKeys Identified Mail
DKIM adds a digital signature to every outgoing email.
What DKIM does
-
Proves email hasn’t been altered
-
Confirms sending domain authenticity
DKIM is typically enabled automatically on Eclipse mail servers.
DMARC – Domain-based Message Authentication
DMARC tells receiving servers what to do if SPF or DKIM fails.
What DMARC does
-
Protects against spoofing
-
Provides reporting and visibility
-
Improves reputation