Setting up your SPF, DKIM, and DMARC records on your DNS is essential before sending cold emails. These technical setups ensure improved email deliverability, protect your domain reputation, and reduce the risk of your emails being flagged as spam or phishing attempts.
SPF (Sender Policy Framework): Verifies emails sent from your domain, acting as an authenticator.
DKIM (DomainKeys Identified Mail): Ensures email content integrity to prevent spoofing and phishing attacks.
DMARC Records: Specifies handling of failed authentication checks, instructing providers to quarantine or reject unauthorized emails.
Optional but recommended for enhanced security.
MX Records: Specifies servers accepting emails for your domain, essential for email reception.
Typically set up by default with G Suite.
Before configuring these settings on your DNS, begin by verifying if they are already implemented using SPF, DKIM, and DMARC checker tools:
SPF and DKIM checker: https://www.mail-tester.com/spf-dkim-check
DMARC checker: https://dmarcly.com/tools/dmarc-checker
Use these tools to see the status of your SPF, DKIM, and DMARC records. You may find that all of them are in place, in which case you should skip to the practical tips section of this guide.
If some, or all of these records are not in place, follow the next step on how to set those up:
Following your checks, you can now make the necessary setup configurations.
Go to your DNS settings (e.g., GoDaddy, Namecheap, Cloudflare, etc.) and create a new record.
Select TXT record and enter “@” in “Name.”
Paste the text below in “Value” and then save.
Done! SPF is set up.
Sign into your Gmail Admin Panel (accessible to administrators and/or IT department in your organization).
Click on the top left menu and head to Apps > G Suite > Settings for Gmail > Authenticate Email.
Pick your domain from the drop-down list, click “Generate New Record,” and then copy the hostname and the TXT record value.
Log in to your DNS (e.g., Namecheap, Cloudflare, GoDaddy, etc.), go to the domain list, choose your domain, and pick “Add New Record” in the advanced settings and save your changes.
Go back to Google and simply click “Start Authentication.”
Before setting your DMARC, make sure you’ve configured SPF and DKIM records for the domain.
Go to your DNS settings and create a new record.
Choose a ‘TXT’ record.
Add the hostname (for example, _dmarc)
Add the value. You can find a sample DMARC entry that you can use to create your own below:
This would will look something like this:
We won’t dive into the technicality of what this means, but just copy paste that record and you should be good to go!
You’re done with technical setup! Phew 
! Now, time to follow some actionable best practices to enhance deliverability and avoid being marked as spam.
Best Practices to Avoid Spam
How to Keep Emails Out of Spam Folders
You’re all set to Launch! Congrats!
Still have questions?
Reach out anytime via the support chat at the bottom-right corner of your dashboard, or email us at support@getsaral.com. We’re happy to assist!
