Client Emails Going to Spam?
We Get Them Delivered.

When a client’s email lands in spam, it costs them deals and damages trust in your agency. We configure SPF, DKIM, and DMARC correctly so their emails reach the inbox and their domain stays protected from spoofing.

Book a Session See what we do ↓

Everything set up correctly. One session.

SPF, DKIM, DMARC, third party senders, deliverability testing. Done right so you never have to revisit it.

SPF Record Setup
Correctly formatted SPF records that authorize the right sending sources without breaking existing mail flow.
DKIM Configuration
DKIM keys generated and published for Google Workspace, Microsoft 365, and third party senders like Mailchimp or ActiveCampaign.
DMARC Policy Setup
DMARC records created with the right policy level (none, quarantine, or reject) based on the client’s situation.
DMARC Reporting
Reporting addresses configured during the monitoring period. Ongoing reporting is handled through your own DMARC reporting service after we wrap up.
Subdomain Alignment
Authentication records aligned correctly across root domains and subdomains to pass DMARC checks.
Third Party Sender Alignment
Additional SPF includes and DKIM selectors added for tools like HubSpot, Klaviyo, or any bulk sender.
Deliverability Testing
We test outbound emails through inbox placement tools to confirm records are working before we close out.
Spoofing and Phishing Prevention
DMARC enforcement that prevents your client’s domain from being used in phishing campaigns.
MX Record Verification
MX records checked and confirmed to be pointing to the correct mail servers so inbound routing is working correctly.
Not sure if this covers your situation?
Submit a request and we will let you know if we can help. Chances are, we can.
Submit a Request

The agencies we work with. Now they’re heroes.

What agency partners say about working with us.

"I run a full scale digital marketing agency and have been using Troy for over 10 years now. Whenever we run into server, email, high level tech or website issues, he is the guy that takes care of it for us."

Jason FillerVision Fillers • Digital Marketing Agency

"As our agency grew, so did the support tickets! Troy has helped us handle DNS and firewall issues, random plugin conflicts, migrations, email authentication and more. R5 loves counting Troy as part of the team!"

Austin ReasonR5 Website Management

"Those moments I just love having Troy in my back pocket. When a client site is on fire and you have a timer ticking, knowing we can call someone who picks up and fixes it is everything."

Yvonne HeimannAsk YVI

"I watched my malicious login attempts drop to zero almost immediately after implementing Troy’s WAF rules. Game changer."

Craig CarusoAgency Owner

"Troy literally saved all my sites from an attack. His Cloudflare setup is the reason they survived. I cannot recommend him enough."

Howard SpaethH Grant Designs

"I’m comfortable with most things DNS, but when I needed to implement SPF, DKIM and DMARC records, Troy’s guidance made it straightforward."

Christian van ’t HofBrightsol

Give us a call or text.

Call us directly or submit a ticket and we’ll be on it fast.

757-346-1234
Mon – Fri, 9am – 5pm ET
or submit a ticket anytime

Tickets are always monitored. For emergencies, calling is always the fastest path. Submit a ticket if you’re unsure if we can help.

Submit a Support Ticket

Tell us what’s going on and we’ll get back to you with a plan, usually same business day.

  • Describe the issue, site, client name, and what’s happening
  • We review and respond with next steps or a fix timeline
  • We handle it behind the scenes. Your client never knows
Open a Support Ticket

Confidential. We never contact your clients directly.

Frequently Asked Questions

Common questions about SPF, DKIM, DMARC setup and email deliverability.

My client’s email is going to spam. How long before it’s fixed after the session?
SPF and DKIM changes take effect almost immediately once DNS propagates, usually within minutes to a few hours. DMARC takes longer to build reputation. Most clients see noticeable improvement within 24 to 72 hours, though full inbox recovery can take a week or two depending on how damaged the sender reputation is.
What is the difference between SPF, DKIM, and DMARC?
SPF tells receiving servers which IPs are allowed to send on your domain’s behalf. DKIM adds a cryptographic signature to each email that proves it was not altered in transit. DMARC ties them together and tells receiving servers what to do when an email fails either check. All three need to be set up correctly to have reliable deliverability.
Do you support third party senders like Mailchimp, ActiveCampaign, or HubSpot?
Yes. Each third party sender needs to be authorized in your SPF record and have its own DKIM key published. We set up all of them in the same session so every service your client uses sends from an authenticated source.
Is email authentication a one time fix or does it need ongoing management?
The core SPF, DKIM, and DMARC records are a one time setup. They only need to change if your client adds a new email service, changes providers, or adds a new sending domain. We document everything we set up so you have a clear record of what is in place.
What if my client sends from multiple domains or subdomains?
Each domain needs its own SPF, DKIM, and DMARC records. We can cover multiple domains in the same session or across separate sessions depending on the volume. Let us know upfront how many domains need to be configured so we can scope the session correctly.
Can every domain reach p=reject, or are there exceptions?
Our goal is always to get every domain to p=reject, which gives the strongest protection. Most domains get there. However, some domains have unusual sending configurations, legacy systems, or third party services that cannot be fully authenticated. When that happens, p=quarantine is the responsible stopping point. Unauthorized emails still get filtered to spam rather than delivered, and your client’s domain is still protected. We will always explain the situation and give you a clear recommendation based on what the monitoring data shows.
How does the process work from setup to full DMARC enforcement?

DMARC enforcement happens in three stages and we handle all of them.

1. Initial Setup. We configure your SPF, DKIM, and DMARC records and start DMARC at a p=none policy. This means unauthorized emails are still delivered but all activity is reported, so nothing breaks while we gather data.

2. Monitoring. We integrate your domain into our DMARC monitoring system and track the reports. This lets us confirm that all legitimate senders are authorized and aligned before tightening the policy. Any third party services that were missed get added during this phase.

3. Finalization. After a 30 to 60 day monitoring period we move the policy to p=quarantine and then p=reject. At reject, unauthorized emails are blocked outright, which is the level needed to fully protect your client’s domain from spoofing and phishing.

Book a session. We handle the rest.

Schedule a time, we gather what we need, and configure everything correctly. Most setups are complete by the end of the Zoom call.

Email
Email Deliverability Fix

Protect your client’s domain and make sure their emails reach their destination. We configure SPF, DKIM, and DMARC records so their deliverability improves and their domain stays protected from spoofing.

  • SPF, DKIM, and DMARC configured correctly
  • Third-party senders authorized and aligned
  • Deliverability tested and verified
  • Spoofing and phishing prevention enforced
  • Full documentation of everything set up

We schedule a Zoom session to gather the information needed to configure your records. Some setups can be handled before the call.

$157
Book a Session
100% money back if we cannot fix it
Not sure what you need? Book a free 20-min discovery call
Have a question?
100% human. 0% robot. Results may vary. 😄