Netigate Success Center


Configuring SPF for your DNS

Table of contents


    The most popular method of survey distribution is via email sendout. In this guide, we will look at why your recipients may not receive email sendouts and what you can do to lower the chances of this happening. 

    Are missing security protocols the problem?

    Email security protocols are some of the most common reasons behind undelivered sendouts. Many global email providers (such as Google & Microsoft) have these security protocols in place to prevent spam, phishing and forgery attacks. The most common protocols are SPF (Sender Policy Framework) for your domain and DKIM (DomainKeys Identified Mail) for your emails. 

    A valid SPF record for your domain, helps prevent Email Spoofing and Phishing, enhances email deliverability and protects Brand reputation. 

    Implementing DKIM offers several important benefits for your email communications including authentication and sender verification, message integrity and Brand protection. 

    Emails from Domains missing these important security protocols (SPF & DKIM) may be viewed as suspicious by email providers, resulting in them being incorrectly identified as spam or becoming blocked entirely.  

    Therefore, we highly recommend that you have both SPF and DKIM enabled for your domain/account: 

    How to configure SPF for your Domain: 

    Configuring SPF for your domain involves creating a DNS TXT record that specifies which mail servers are authorized to send emails on behalf of your domain. Below is the exact record you need to include in your DNS:  

    v=spf1 ~all  

    If you are unsure about how to create SPF records, your DNS hosting provider or IT team should be able to assist you. 

    How to configure DKIM for your Netigate account. 

    To read more about adding DKIM keys to your emails, please click here. 

    Do you have TLS enabled?

    We are using Transport Layer Security (TLS) for encrypting and securing e-mail transmissions between our mail servers and the recipients’ mail servers.  

    To ensure that you will receive our email sendouts, TLS needs to be enabled on your incoming mail server. You may need help from your IT department or e-mail administrators to enable this.