AuthenticationFebruary 9, 202610 min read

What DNS Records Do I Need for Email?

Email requires several DNS records: MX records to receive email, SPF to authorize sending servers, DKIM for cryptographic signing, and DMARC for policy enforcement. For sending only (through an email platform), you need SPF, DKIM, and DMARC records. These authentication records are now required by Gmail and Yahoo for bulk senders.

Essential DNS Records for Email

MX Records (Mail Exchanger)

MX records tell other servers where to deliver email for your domain. They point to mail servers that accept incoming email.

yourdomain.com MX 10 mail.yourdomain.com

The number (10) is priority. Lower numbers have higher priority. If you use multiple mail servers, different priorities enable failover.

You need MX records only if you receive email at your domain. If you only send (like a marketing-only subdomain), MX records are optional.

SPF Record (Sender Policy Framework)

SPF authorizes which IP addresses can send email from your domain. It is a TXT record that lists approved senders.

yourdomain.com TXT "v=spf1 include:emailprovider.com -all"

Components explained:

You can have only one SPF record per domain. Combine multiple senders with multiple include statements.

DKIM Record (DomainKeys Identified Mail)

DKIM adds a cryptographic signature to your emails. The public key is published in DNS so receivers can verify the signature.

selector._domainkey.yourdomain.com TXT "v=DKIM1; k=rsa; p=MIGfMA0..."

Your email platform provides the specific DKIM record to add. The selector is unique to each platform or configuration.

DMARC Record

DMARC tells receivers what to do when SPF or DKIM fail, and where to send reports.

_dmarc.yourdomain.com TXT "v=DMARC1; p=none; rua=mailto:[email protected]"

Policy options:

Additional Helpful Records

A Record

Maps your mail server hostname to an IP address. Required if your MX record points to a hostname on your domain.

mail.yourdomain.com A 192.0.2.1

PTR Record (Reverse DNS)

Maps your sending IP back to a hostname. Set by your hosting provider, not in your domain DNS. Important for dedicated IP senders.

CNAME Records

Some email platforms use CNAME records for DKIM or tracking domains instead of TXT records. Follow your provider's specific instructions.

Records for Sending vs Receiving

If You Only Send Email

Required: SPF, DKIM, DMARC

Optional: MX (for bounce handling), A record

If You Send and Receive

Required: MX, SPF, DKIM, DMARC, A record for mail server

Common Configuration Mistakes

Frequently Asked Questions

Do I need MX records if I only send email?
MX records are primarily for receiving email. If you only send (like a marketing subdomain), MX records are optional but can help with bounce handling.
Can I have multiple SPF records?
No, you can only have one SPF record per domain. If you use multiple email services, combine them in one record using multiple include statements.
What happens if DKIM is not configured?
Without DKIM, your emails lack cryptographic verification. Gmail and Yahoo may reject or spam-filter email from bulk senders without DKIM.
How do I check if my DNS records are correct?
Use tools like MXToolbox, Google Admin Toolbox, or dmarcian to verify your SPF, DKIM, and DMARC records are properly configured and passing.

Ready to Improve Your Email Deliverability?

SortedIQ helps high-volume senders maximize inbox placement and sender reputation.

Talk to Our Team