Google has announced stricter email compliance measures for senders. To comply with Gmail Update and to ensure a safer email environment all emails sent to Calgaz Gasco must meet security requirements listed on this page. Please pass this information to your domain host/email provider. This action needs to be completed as soon as possible.
An incoming email is delivered to info@gasco-gas.com only after passing through all authentication checks and spam filters. If an incoming email fails the checks then our system marks the email as spam/suspicious and in some cases the email can be rejected altogether.
Email Security Requirements
The key security requirements for email senders are listed below:
SPF (Sender Policy Framework) – The SPF record includes IP addresses and domains authorized to send emails from that domain. For SPF to pass, email must be sent from a valid server and all IP addresses of all servers or services that send email for your domain need to be included in the SPF record.
DKIM (DomainKeys Identified Mail) – The DKIM “signature” is a digital signature, receiving email servers use the signature to verify email came from the domain. For a message to pass DKIM the signature must be verified by the recipient email server.
DMARC (Domain-based Message Authentication, Reporting & Conformance) – A DMARC policy tells a receiving email server what to do after checking a domain’s SPF and DKIM records. For a message to pass DMARC, it must pass SPF and/or DKIM.
Blacklisting – The IP address of an incoming email is run by RBL services to verify if the IP has been blacklisted previously due to being identified as spam. The email will be rejected if the IP is blacklisted.
To see all security checks please read Gmail Article and Titan Spam Filters Article. For further email security information please click on links on this page.
Potential Consequences of missing or incorrect email authentication records
Spam classification – Legitimate email messages with missing or incorrectly set up records can be sent to spam folders or rejected by mailbox providers.
Domain spoofing – Spoofers can damage the reputation of the impersonated domain through spam or malicious emails.
Phishing emails – Spammers impersonate reputable organizations to trick recipients into divulging sensitive information such as passwords, credit card numbers, bank account information or other important data in order to utilize or sell the stolen information.
Malware – Attackers can spread malware through attachments or links that appear trustworthy.
Domain Health Checker
To check if there are any authentication issues on your mail system please see instructions below.
For Email Health Report please type your Domain Name into search bar and click Check Email Health. If scan results show “Mail Server Error” please follow instructions below to correct fail.
For DKIM Checker please type your Domain Name into search bar, and tick detect all selectors then click check DKIM. If scan results show “No Selectors Detected” then this will be due to DKIM record not being set up. Please follow instructions below on adding DKIM record.
If the Email Health report shows no errors and the DKIM checker shows DKIM record then it is likely that SPF or DKIM soft fail has occurred. Please ask your IT/Domain provider to check that SPF and DKIM is in compliance with all security requirements.
How to pass Email Security?
For incoming email to be delivered to the Gasco team you will need to ensure all email authentication records for you domain are set up correctly. To add email authentication records to Domain Control Panel/Console please see instructions below:
- Sign in to your domain provider Control Panel/Console and locate the page where you update DNS TXT records for your domain. For help on how to find this page please check documentation from your domain provider or contact domain provider for this information.
- For SPF you need to ensure all IP addresses or domains for your mail servers are included in the SPF record. To add an SPF record type in correct values on your domain provider’s TXT records page. Please see example SPF records below.
- To add a DKIM record you need to obtain the DKIM key from your Email Admin console. And add the DKIM key to your domain provider’s TXT records page. Please see example DKIM record below.
- For DMARC you must ensure that you have set up SPF and DKIM for your domain. And you must choose a DMARC policy. The DMARC policy informs the receiving mail server on the action to take when a message from your domain fails DMARC authentication. To add a DMARC record type in correct values onto the domain provider’s TXT records page include text that represents your DMARC policy on DMARC record.
Please check your domain provider’s documentation on how to add SPF DKIM and DMARC records to your domain or contact your domain provider for more information.
For more detailed instructions on adding email authentication records for Google and Microsoft mail servers. Please see Google Help and Microsoft Help. For more email security information please see Adding DNS records to domain.
For SPF/DMARC/DKIM updates it can take 24-48 hours for changes to take effect across the internet.