Connecting to a DNS to perform message authentication
To enable message authentication, you have to allow Kaspersky Secure Mail Gateway to connect to the DNS server. If the connection to the DNS server is prohibited, SPF, DKIM, and DMARC message authentication is disabled.
You can also specify the maximum DNS server response wait time. When this time elapses, the DNS server is considered unavailable, and the message is processed by Kaspersky Secure Mail Gateway without message authentication. The default value is 10 seconds.
To allow Kaspersky Secure Mail Gateway to connect to the DNS server:
In the main window of the application web interface, open the management console tree and select the Settings section and Protection subsection.
In the External services section, click the Allow connection to DNS server link to open the External services window.
In the list to the right of the name of the Allow connection to DNS server setting, select Yes.
Click the Apply button.
To specify the maximum DNS server response wait time:
In the main window of the application web interface, open the management console tree and select the Settings section and Protection subsection.
In the External services section, click the Allow connection to DNS server link to open the External services window.
In the field to the right of the Allow connection to DNS server setting, specify the maximum DNS server response wait time.