Get started

Set up a sending domain

To send as your own brand, add a domain and authenticate it with a few DNS records. Once verified, you can use any From address on that domain.

Why you need this

Mailbox providers only accept mail from domains that prove the sender is authorized. Your From address must be on a domain you've authenticated here — otherwise sends are rejected with an authorization error.

ℹUse a subdomain like send.yourdomain.com rather than your root domain. This isolates your marketing reputation from the mail your company sends day-to-day, so one doesn't drag down the other.

Add your domain

In the console, open Sending domains (under Domains & DNS) and click Add domain. Enter the domain or subdomain you'll send from.

When you add a domain, BlacklistGuard automatically generates a DKIM key pair for it — so the DKIM record is ready to publish immediately, with no extra step.

Publish the DNS records

Open the domain to see the exact records to add at your DNS provider. There are four — copy each Host and Value exactly. (The values below are illustrative; always copy the real ones from the console, since the DKIM key and verification token are unique to your domain.)

Domain ownership (required)

Proves you control the domain. This is the only record required before you can send.

Type	Host	Value
TXT	`_blg-verify.yourdomain.com`	`blg-verify=<token>`

SPF (recommended)

Authorizes our servers to send for your domain.

Type	Host	Value
TXT	`yourdomain.com`	`v=spf1 include:blacklistguard.com ~all`

DKIM (recommended)

Cryptographically signs your mail so receivers can verify it wasn't altered. The key is generated for you; publish it as-is.

Type	Host	Value
TXT	`default._domainkey.yourdomain.com`	`v=DKIM1; k=rsa; p=<public key>`

DMARC (recommended)

Tells receivers what to do with mail that fails authentication, and where to send reports.

Type	Host	Value
TXT	`_dmarc.yourdomain.com`	`v=DMARC1; p=none; rua=...`

New to these records? Verify SPF, DKIM & DMARC explains each one in depth.

Verify

After publishing the records, click Verify DNS on the domain. We check your DNS live:

Ownership must pass for the domain to become verified and usable for sending.
SPF, DKIM, and DMARC are checked and reported alongside — they're strongly recommended for deliverability but not required to start.

⚠DNS changes can take a few minutes to propagate (occasionally up to 48 hours). If verification doesn't pass right away, wait and click Verify again — the console re-checks automatically too.

Optional: custom Return-Path & DMARC reports

On the domain view you can also enable:

Custom Return-Path — handle bounces on your own subdomain, which aligns the return-path for stricter DMARC.
DMARC report ingestion — receive and parse DMARC aggregate (rua) reports on a subdomain.

Each adds its own DNS records, shown in the console when you toggle it on.

Send from your domain

Once the domain is verified, set from_email to any address on it when you send — see the Quickstart.