Domain Verification Overview
Understand the complete DNS authentication chain required to verify your domain, ensure maximum deliverability, and protect against spoofing.
Why Verification is Required
Domain verification is a mandatory security measure that proves you own the domain and prevents unauthorized parties from spoofing it. Email providers (like Gmail, Outlook, and Yahoo) require strict sender authentication to protect users from spam and phishing. By fully verifying your domain, you can ensure high deliverability and build a strong sender reputation.
What You Need to Configure
To reliably send emails, ensure maximum deliverability, and authenticate your domain, you must configure a complete set of DNS records. We check these records to verify domain ownership. Each record serves a specific, critical purpose in the email ecosystem:
1. SPF (TXT Record)
Authorizes our underlying infrastructure (like AWS SES and Oracle Cloud) to send emails on behalf of your domain name.
Learn about SPF →2. DKIM (CNAME & TXT Records)
Adds cryptographic signatures to your domain, proving beyond doubt that the email content hasn't been tampered with.
Learn about DKIM →3. DMARC (TXT Record)
Enforces policies telling receiving servers what to do if SPF or DKIM checks fail, protecting you from spoofing.
Learn about DMARC →4. Custom MAIL FROM (MX Record)
Configures custom MX records on your domain to align delivery and handle automated bounce processing.
Learn about MX Records →5. Link Tracking (CNAME Record)
Sets up optional tracking records to wrap links, branding click tracking to your domain. Open tracking is handled automatically via an injected tracking pixel.
Learn about Tracking →Next Step: Configure SPF
Once you understand what needs to be verified, begin by setting up your SPF records.
Configure SPF Records