Configuring external services

To configure external services:

1. In the application web interface window, select the Settings → General → Protection section.
2. Select the External services tab.
3. Allow or prohibit connecting to a DNS server using the Allow connection to DNS server toggle switch.

   By default, connection is allowed.

   If the connection to the DNS server is prohibited, SPF, DKIM, and DMARC Mail Sender Authentication is disabled.

4. In the DNS server timeout (s) field, specify the maximum time in seconds to wait for a response from the DNS server.

   The default value is 10 seconds. When this time elapses, the DNS server is considered unavailable and the message is processed without Mail Sender Authentication.

5. In the KSN server timeout (s) field, specify the maximum KSN server timeout in seconds.

   The default value is 10 seconds. When this time elapses, the KSN server is considered unavailable and the message is processed without a KSN reputation database scan.

   The option is used only if you have consented to participation in the Kaspersky Security Network program or Kaspersky Private Security Network.

6. Enable or disable SPF Mail Sender Authentication using the Use SPF toggle switch.

   If SPF Mail Sender Authentication is enabled, IP addresses of message senders are matched against the list of possible message sources created by the administrator of the mail server.

   Before you enable SPF authentication, you must perform prepare the DNS server.

   By default, this authentication is enabled.

7. Enable or disable DKIM Mail Sender Authentication using the Use DKIM toggle switch.

   If DKIM Mail Sender Authentication is enabled, the digital signature of the messages is verified.

   By default, this authentication is enabled.

8. Enable or disable DMARC Mail Sender Authentication using the Use DMARC toggle switch.

   If you have enabled DMARC Mail Sender Authentication, the application checks if the domain containing the sender address in the "From" field of the email header matches SPF and DKIM identifiers.

   Before you enable DMARC authentication, you must perform prepare the DNS server.

   By default, this authentication is enabled.

   If SPF- or DKIM authentication is disabled, DMARC authentication will also be disabled.

9. Click Save.

External services are configured.

Page top