Category Archives: How to Make the Most of MxToolbox

New Features for MxToolbox

At MxToolbox, we’re continuously striving to provide cutting-edge tools to help our customers improve their company’s email practice. As you can see on our Network Tools page, we offer a wide-range of helpful free tools and paid products that ensure your business email platform is working at its optimal level. And since we’re routinely updating and expanding our collection of tools, we recommend you visit the page often for the latest developments. For the most recent updates and newest tools please check out the NEW! tab. Let’s take a closer look at some of the more popular MxToolbox features.

NetworkTools-21April2019

Email Tab

The email portion of the Network Tools page contains some of our most popular tools such as the MX Lookup and Blacklist Check; and offers several other essential diagnostic tools that can greatly benefit your company’s email setup. For example, the SPF, DKIM, and DMARC tools now support improved message delivery and provide feedback catered to your business domain. Moreover, the two specific DNS record generators features (SPF and DMARC) MxToolbox offers under this tab help create records for the respective protocols.

Network Tab

For this section of Network Tools, the ASN Lookup and Domain Health Report tools are highlighted points. For example, the ASN (Autonomous System Number) Lookup query takes either an AS name or AS number as input and returns the missing component. For immediate feedback regarding your domain, the Domain Health Check will execute hundreds of domain/email/network performance tests to ensure your systems are online and performing optimally. In addition, the report will provide results for your company’s domain and highlight any critical problem areas that need attention.

DNS Tab

The DNS tab provides all the key DNS tools to help make sure your DNS records are published correctly and your DNS is operating at 100% such as DNS Lookup, DNS Check, and Whois. This list of tools also contains some advanced DNS Security diagnostic tools such as nsec, rrsig, and more.

MxToolbox’s Newest Additions and Updates

Among the many email tools MxToolbox offers, there are a few that stand out. Although we love each equally, if forced to name favorites, these come to mind:

  • DMARC Report Analyzer – One of our newest tools, this feature will make DMARC Aggregate XML reports human readable by parsing and sorting them by IP address into understandable reports.
  • DMARC Generator – Another new tool we’re proud of, this generator will help you create a DMARC record specifically for the domain/subdomain that you submit. Simply put, this tool’s a must for your DMARC implementation.
  • Header Analyzer – Found under the Email tab, this tool will make email headers human readable by parsing them. This helpful feature is a popular tool to which we’ve recently added DMARC, SPF, and DKIM testing functionality.
  • Email Deliverability – Also under the Email tab umbrella, this tool has been updated for easy workability. Send a test email to us, and we take over from there to generate a comprehensive deliverability report. To receive crucial data regarding your email status, definitely try this tool.

MxToolbox strives to provide your business the most beneficial information related to your email platform. By offering your company a variety of free tools to gain optimal deliverability, we believe our tools allow your messages to be delivered successfully. This not only protects your business, but also your customers. Whether found under one or more tabs, the features shown on the Network Tools page are vital to your email rates. Be sure to explore the page and try as many as desired. We’re here to help.

The State of DMARC Adoption – Inbox Providers in 2018

Print

There is a lot of buzz surrounding DMARC right now.  And most people have questions like:

  • How many companies are adopting DMARC?
  • What is the volume of email sent to companies and governments that have adopted DMARC?
  • Is it necessary for your business?

As your expert in Email Delivery, MxToolbox is constantly looking at technologies that affect your business.  For years, the biggest worry for companies like yours was being blacklisted. Now, email delivery is more complex and requires constant evaluation of your email senders and their compliance with new technologies like SPF, DKIM and DMARC.  In our State of DMARC Adoption, we evaluate how quickly companies are adopting DMARC and how DMARC can affect your business.  Learn More.

 

Still listed?

Every so often a customer contacts us because they feel it is taking too long to be de-listed from a blacklist or they were almost immediately re-listed on a blacklist.  We have a few recommendations for you:

First, be patient!  Some blacklists are operated by a small team that must field hundreds or thousands of requests every day.  They need time to get to your issue.  Some blacklists require a minimum delay before they will delist an IP address or domain.  This is for everyone’s protection.  They have no credibility as an anti-spam service if they delist a regular spammer or if they delist someone with a malware infestation before it has been remedied.  Blacklist administrators need time to trust your servers again.  Give them time.  It’s painful for you, but it’s temporary.

Second, research your issue!  You may not think you have an issue, but it is very rare that your email randomly dropped into a honeypot or other spamtrap that blacklist administrators use to create their lists.  You have an issue, somewhere.  It might be a malware infection, it might be an accidental   inclusion in an email campaign, it could be an internal user sending malicious email by accident.  Regardless, you need to do some research into your systems to make sure it doesn’t happen again!  And, you may need to look into your internal email controls and policies.  You should be doing this anyway, but now is the time to make a special effort!

Finally, fix your issue!  Put new policies in place.  Invest in new email controls.  Talk with Marketing about how they do campaigns.  Setup user controls.  Sweep your systems for malware.  Clean your house.  This will save you time and money down the road.  And, you can mention all this in your next request to delist.  The blacklist provider will appreciate the work.

Why do all this work if it was an accident?  How do you know it was really an accident you were listed?  You don’t unless you look into it and there’s tremendous risk in assuming that you’re “okay”.  The downside of being listed a second or third time is severe:  you will be listed for a much longer time and it will be much more difficult to be delisted.  In fact, most blacklist administrators have a three-strikes policy.  A third listing and you’ll likely be blacklisted for the better part of a year.  Continued listing could get you on their permanent blacklist.

Yes, I am trying to scare you.  Yes, this is serious.  Yes, this requires you to work to fix the issue.  Get started!  The downside is much more severe than the minor inconvenience you are experiencing with your first blacklisting or even with your delisting request being delayed.  And, remember, paid MxToolbox users don’t have to go it alone: we provide delisting support services to help you get off these lists.  But, we can’t magically delist you:  you still have to do the work.

Are blacklists legal, ethical, etc?

Blacklists came about as a response to unethical and illegal spam.  Blacklists have no other purpose but to stop bad or malicious acts, so they typically occupy the ethical high ground. Since they are used by businesses, universities and internet service providers to screen traffic, they are incented to be ethical, list only known bad actors and not list legitimate commercial traffic.  To do otherwise would undermine the value of their service to their own customers.

All that said, MxToolbox carefully curates a list of the most used and best maintained blacklists.  All the blacklists we check provide free delisting services.  We feel that requiring payment for delisting is not ethical.  However, a few blacklists offer expedited delisting services, which is a bit of a grey area.  Other blacklists may ask strange or seemingly random questions.  Think of this as geeks being geeks, rather than anything malicious or unethical.

What does being blacklisted mean?

Being on a blacklist is a sign of trouble for your email deliverability.  Since companies screen out traffic from blacklisted IP addresses, your emails may be dumped into a spam folder or refused completely.  If your email server’s IP address is blacklisted, it could make doing business difficult.  It’s also a sign that your servers may have been used for spreading spam, viruses or malware.  This could indicate a security breach or an employee issue.  

If your website IP address is blacklisted, then you have a bigger problem.  Typically, web servers do not send email.  Since the primary means of collecting bad actor IP addresses is via email, your web servers might be sending email without your knowledge.  This is definitely a sign of a malware or virus infection on those servers, or someone running email inappropriately from a web server.  

Occasionally, small businesses will run email and web on the same servers.  If you do, you run the risk of a blacklist event taking out all your e-commerce channels because companies may deny access to your website and email activity based upon your blacklist status.

Domain blacklisting is a serious issue.  It means that someone is using your domain for malicious activity, either on a server hosting your website, or by breaking into your DNS.  If the activity is coming from a server in your datacenter, then you need to root out the virus or malware on your servers, patch your servers, and upgrade your security systems and firewalls.  If the activity is coming from a server outside your datacenter that is using your domain name or a subdomain, you have another big problem.  In this case, your DNS has been hacked and the attackers have added subdomains that use your brand.  The attackers can utilize the remote server to host malware and viruses all the while using your brand to make their attacks look legitimate.

Regardless of the type of blacklist, being blacklisted could be a serious issue.  MxToolbox Monitoring services can help you by letting you know when you have been blacklisted, giving you notice before it becomes a serious business issue.

How do I get delisted?

Each blacklist has it’s own method for delisting.  Sometimes it’s a webform, sometimes it is an email.  Almost always, you need to include the steps you took to fix whatever problem put you on a blacklist.  Many blacklist operators see themselves as righteous crusaders fighting against spam, malware, viruses, bad email configurations and poor email operations, so remember when dealing with a blacklist operator, you are the bad actor seeking forgiveness.

Tips for delisting:

    • Read the description of the blacklist – Descriptions on MxToolbox Blacklist Info Pages give you everything you need to know about the blacklist and your reasons for being listed.  
    • Ask yourself “Do I need to be delisted?” and “Is this affecting my business?” – If you do not do business in Spanish, chance are you don’t need to be removed from the NoSolicitado blacklist that only serves Spanish language emails.  If you aren’t seeing any emails bouncing back, then this isn’t a huge issue, yet.  Don’t waste time or get frustrated over listings that have no effect on business.  
      MxToolbox provides filters that allow you to ignore alerts on irrelevant blacklists.  We also provide an MxReputation report that tells you what your global reputation is.  If it’s still high, you might be fine ignoring this blacklist.
    • Take care of the problem that caused the blacklisting – Once you know why you were listed, fix those issues.  Patch servers, run anti-malware/anti-virus software, fire the guy in marketing that was CCing all your customers or whatever you need to do. A blacklist will not delist you if you have changed nothing.
    • Have a detailed list of remediation steps you have taken –
      What did you do to clean viruses or malware?
      What did you do to close hacked accounts and prevent future attacks?
      Have you changed outbound email policies to prevent spam?
      Have you patched servers or firewalls?
    • Visit their site and fill out the required forms carefully and completely – MxToolbox has links to all the blacklist websites, including delisting forms.  Their forms are for their protection.  Their users will question a delisting if it results in further spam, so filling them out completely will aid your case.
    • Be polite – Most blacklists have evidence that your servers have acted badly.  Treat this as a respectful request that your servers be delisted because you are technically the bad actor here.
    • Explain the business impact – Let them know that you have a business that is impacted by being listed.
    • Be patient, wait a few days for a response – This is not an instantaneous delisting process.  Some of these blacklists are small shops with a handful of employees.  They also need time to validate that you are no longer spamming, sending malware or other issues.  They will wait to see that your emails are no longer hitting their spam traps or being reported by any new customers.  Be patient.
    • Don’t make multiple requests – It’s okay to make a second request if you have heard nothing in a few days, but refrain from making multiple requests in the first few days of an inquiry.  Blacklists get hundreds or thousands of requests daily and often duplicates drop to the bottom.
    • Don’t pay to delist – All the blacklists checked by MxToolbox provide free delisting services.  A few offer paid expedited delisting services.  MxToolbox does not recommend paying to delist and we do not condone services that require payment.  

After you’ve gone through these steps, you should consider setting up monitoring on your important IP addresses, especially Email and Web servers.  Monitors can alert you to blacklist events as they emerge, rather than waiting for serious business impacts.  MxToolbox offers a wide range of monitoring solutions from Free, single IP solutions, to real-time large network blacklist monitoring.

How do I know if I am listed on a blacklist?

Typically, the first time you find out that you are blacklisted is when customers start telling you that they aren’t receiving your email.  Bounced email is the number one symptom of being blacklisted.  Unfortunately, this is finding out about the problem only after it has impacted your business.

The other way to find out if you have been blacklisted is monitoring.  MxToolbox provides active monitoring solutions for blacklisting events.  Our free IP Blacklist monitor checks your server’s IP address every 7 days to give you a general warning of blacklist issues.  Our paid subscriptions check every 4 hours and premium services check at least once an hour, up to real-time blacklist checking.  The higher the frequency of checks, the more likely you will know about being blacklisted before it becomes a customer issue.

MxToolbox Use Cases: Firewall Setup

Testing Firewalls

Testing firewall setup can be a tricky business.  There are thousands of ports to scan and many types of options that make configurations complicated.  While MxToolbox can’t know every firewall and test every variation, we can give you tips on how to probe your firewall externally using our tools to see if everything is setup properly.

Pre-Test

Before you begin testing your firewall setup, you’ll want to make a few lists:

  1. Make a list of IP addresses and server names.  You should have two lists:  one for public facing servers that you want to be able to access and another for private servers that should not be externally facing.
  2. Make a list of ports that should be accessible on the firewall, based upon the types of servers you have that are public facing.
  3. You may also want to make a list of ports you absolutely want blocked for security reasons.  We have a few in our Portscan Tool.

Verifying Setup

During setup verification, you will run a series of tests against both your public IP addresses and private servers to ensure your firewall is appropriately blocking traffic and permitting only what you want.

  1. Run a port scan on your firewall.  This will tell you if most common ports are open
  2. Ping both lists of servers: IP addresses you want to be public and servers you don’t want to be public.
  3. Run a Traceroute to all public facing servers so you can be sure that traffic is running through your firewall.
  4. Run SMTP, HTTP, or TCP tests on all public facing servers for each port/service combination that the server will be running.  Alternatively, you could simply run a port scan for each server.

On-going Server Maintenance

On-going, you may want to ensure your firewall is open to the ports/services you have specified.  The best way to test this is through regular monitoring.

  1. Setup SMTP monitors for all mail servers behind the firewall
  2. Setup HTTP monitors for all web servers behind the firewall
  3. Setup TCP monitors for all other services on those servers.

Monitors are the best way to know immediately when a service or server goes down.  MxToolbox monitors are constantly probing your systems to check availability, giving you peace of mind knowing that you will know if something goes wrong.

MxToolbox Use Cases: Webserver Setup

Setting up a Web Server

Setting up a webserver for a new or existing domain can be a fairly trivial task with the right tools.  An administrator needs to balance configuring web server software, DNS setup, load-balancing, redundancy, and firewalls.  Here are few tools that might simplify your setup process:

Pre-Check

  1. Run a blacklist check on the IP addresses that you plan to use for your web server.  A blacklisted IP address should not be used for mail servers or web servers as this is an indication of potential fraudulent or spammer activity.

Verifying Setup

We’ll pick-up after you have assigned the IP addresses, and installed the OS and web server software.  From there you will want to verify that your server is up and running and accepting HTTP or HTTPS connects:

  1. Run an HTTP or HTTPS test on each IP that will accept email.  This will perform several tests against your server and give you results on your web configuration. HTTPS tests add a few additional areas related to configuration of the secure socket layer, including certificate checks.

Verifying DNS Setup

  1. Check that you have properly configured A records for the server(s).

On-going Server Maintenance

  1. Setup a web monitor on each IP that will serve as a web server.  This will perform several tests against your server and give you granular results on the status of your HTTP or HTTPS configuration.

Today, almost every online service runs off an HTTP or HTTPS backend.  Knowing that your services are up and running is incredibly important.  With MxToolbox Monitoring solutions, you can be sure that your services are up and performing while you concentrate on making them even better.

MxToolbox Use Cases: Setting up a Mail Server

Setting up a Mail Server

Setting up a new mailserver can be a time-consuming and error-prone process, especially if it involves setting up a server for a new domain.  An administrator needs to balance new email security configurations with DNS setup, redundancy and firewalls.  While these can greatly improve security and email deliverability, they can complicate setup.

Here are a few suggestions for using MxToolbox to ease your mail server setup:

Pre-Check

  1. Run a blacklist check on the IP addresses that you plan to use for your server.  A blacklisted IP address should not be used for mail servers.

Verifying your Setup

We’ll start after you have assigned the IP addresses, and installed the OS and email server software.  From there you will want to verify that your server is up and running and accepting email:

  1. Run an SMTP test on each IP that will accept email.  This will perform several tests against your server and give you results on your SMTP configuration.
  2. Check that the appropriate Email TCP ports are available and responding through your firewalls to these servers.
    1. SMTP on port 25
    2. POP on 110 and 995
    3. IMAP on 143 and 993
    4. Outbound SMTP on 587
    5. OWA on 443
  3. Run a Port scan to make sure other ports are shutdown

Verify your DNS Setup

  1. Check your MX records to ensure they are pointing to the new server.
  2. Check that you have properly configured A records for the server.
  3. Check the servers PTR records to ensure they point back to the domain.
  4. Check your SPF records on the domain.

Final Setup

  1. Send us a test message.  Our Email Deliverability report will give you an in-depth report on email headers, hops and more.
  2. Setup your user lists.  We have an Email Extraction tool that can help you assemble simple lists of email users for addition to your server.

Advanced Testing

You might decide to adopt additional standards to address email delivery and spam issues.  MxToolbox is excited to offer tools that can analyze the setup of both DKIM and DMARC standards.

  1. Check your DKIM setup.  This can be useful for email deliverability as signing emails with a DKIM key can reduce bouncebacks.
  2. Check your DMARC setup.  DMARC can improve email delivery as a fully configured record gives recipients the means to communicate issues with your email.  If you monitor your abuse post, you can uncover and remove issues that might cause blacklisting.

On-Going Server Maintenance

We encourage our customers to setup a regular maintenance plan for their email servers.  Realistically, load issues arise, as do DNS and firewall complications.  The best way to prevent these is to know about them before they take out your email.  Here are a few recommendations to keep your servers up and running:

  1. Setup a Blacklist monitor for each IP address.  Blacklisting can cause lingering email delivery issues.  You want to know when your servers have been blacklisted.
  2. Setup monitors for your email systems MX and A records for this email server.  Typically, these shouldn’t change, but a monitor will ensure you know immediately if something does change.
  3. Setup SMTP monitors for IP address of each server.  SMTP monitors will constantly check your servers to ensure they are up to send and receive email.
  4. Setup a Mailflow monitor for each server.  Our premium Mailflow monitor constantly checks the end-to-end health of your mailservers by measuring traffic flow through the server.  

Monitors give you peace of mind.  You’ll know immediately when there is a service slowdown or outage and be free to concentrate on other issues.