1. What is MAIL FROM domain?
When an email is sent, it has two addresses that indicate its source -
a. From address that's displayed to the message recipient,
b. MAIL FROM address that indicates where the message originated.
Mail servers use the MAIL FROM address to return bounce messages and other error notifications. The MAIL FROM address is usually only viewable by recipients if they view the source code for the message.
Amazon SES sets the MAIL FROM domain for the messages that you send to a default value unless you specify your own domain. The following sections discuss the benefits of setting up a custom MAIL FROM domain, and includes setup procedures.
2. Why use a custom MAIL FROM domain?
By default, messages that you send via MuxEmail using your Amazon SES use a subdomain of amazonses.com as the MAIL FROM domain. Sender Policy Framework (SPF) authentication successfully validates these messages because the default MAIL FROM domain matches the application that sent the email— in this case, Amazon SES.
While this level of authentication is sufficient for many users, other users prefer to set the MAIL FROM domain to a domain that they own.
By setting up a custom MAIL FROM domain, your emails can comply with Domain-based Message Authentication, Reporting and Conformance (DMARC). DMARC enables a sender's domain to indicate that emails sent from the domain are protected by one or more authentication systems.
This adds an extra layer of authenticity and security, thus increasing deliverability.
There are two ways to achieve DMARC validation:
a. Using Sender Policy Framework (SPF)
b. Using DomainKeys Identified Mail (DKIM).
The only way to comply with DMARC through SPF is to use a custom MAIL FROM domain, because SPF validation requires the domain in the From address to match the MAIL FROM domain.
By using your own MAIL FROM domain, you have the flexibility to use SPF, DKIM, or both to achieve DMARC validation.
3. Choosing a MAIL FROM domain
The subdomain you use for your MAIL FROM domain has to meet the following requirements:
- The MAIL FROM domain has to be a subdomain of the verified identity (email address or domain) that you send email from. For example, mail.example.com is a valid MAIL FROM domain for the domain example.com.
- The MAIL FROM domain shouldn't be a domain that you send email from.
- The MAIL FROM domain shouldn't be a domain that you use to receive email.
4. Configuring the MAIL FROM domain
1. Open the Amazon SES console at https://console.aws.amazon.com/ses/
2. In the navigation pane, under Identity Management, choose Domains as shown in the image -
3. In the list of domains, confirm that the parent domain of the MAIL FROM domain is verified. If the domain isn't verified, complete the procedures at Verifying your website domain with Amazon SES to verify the domain. Otherwise, choose the domain and proceed to the next step -
4. Under MAIL FROM Domain, choose Set MAIL FROM Domain.
5. On the Set MAIL FROM Domain window, do the following:
a. For MAIL FROM domain, enter the subdomain that you want to use as the MAIL FROM domain.
b. For Behavior if MX record not found, choose - Use amazonses.com as MAIL FROM as shown in the image -
c. Choose Set MAIL FROM Domain. A window appears that contains the MX and SPF records that you have to add to your domain's DNS configuration. These records use the formats shown in the following table.
10 feedback- smtp.region.amazonses.com
"v=spf1 include:amazonses.com ~all"
In the preceding records, replace
com with your MAIL FROM subdomain, and replace
region with the name of the AWS Region where you want to verify the MAIL FROM domain (such as
eu-west-1). Note that the value of the TXT record has to include the quotation marks.
Note these values, and then proceed to the next step.
6. Publish an MX record to the DNS server of the custom MAIL FROM domain. Below we have mentioned some of the common DNS providers along with the documentation on how to add MX and TXT files in each one of them.
DNS/Hosting Provider Name
MX: Adding or Updating MX Records in Your Wix Account (external link)
Check back after 72 hours and your MAIL FROM domain's status should have been changed from "Pending" to "Confirmed".
Important : To successfully set up a custom MAIL FROM domain with Amazon SES, you must publish exactly one MX record to the DNS server of your MAIL FROM domain. If the MAIL FROM domain has multiple MX records, the custom MAIL FROM setup with Amazon SES will fail.
Feel free to reach out at [email protected] if you have any questions.