Prevent outgoing spam
Using DMARC, SPF and DKIM: support-artikkel på google.
- Add a SPF record to your DNS-setup:
- A TXT-record on the root-domain (nothing in the name-column) and this value:
v=spf1 include:_spf.google.com ~all. - You can use
-allinstead of~allto enforce a stricter policy, but google warns that this may result in delivery problems. - This tells receiving parties that all mail from this domain should origin from google. Other mail-servers can be configured by adding their ip-address as
ip4:address.
- A TXT-record on the root-domain (nothing in the name-column) and this value:
- Add DKIM signing - this is two steps:
- Generate a key using the google apps admin-console, and set up signing of outgoing messages (same dialog).
- Add the key to your DNS-setup as a TXT record.
- Add a DMARC record to your DNS-setup:
- This tells receiving parties how to treat messages originating from unautorized domains.
- You can set up quarintining, rejection and logging
- Example:
v=DMARC1; p=none; rua=mailto:postmaster@your_domain.com.
