Review and Validate MX Records

Efficacy Guide using Cisco Secure Email

Review and Validate MX Records

At the Admin level, review and enable/address the following:

  • For your domain(s) and DNS administration, review your MX records and ensure they are locked down and ONLY delivering through the Gateway/Cloud Gateway assigned IP address(es)
  • If you have multiple domains, be sure that you scrub your entire list of domains to ensure they are pointed toward your gateway.
    • You can review Mail Policies > Recipient Access Table (RAT) and Network > SMTP Routes for your defined SMTP Routes List and associated receiving domains.
> dig simplifymyconfig.com MX

; <<>> DiG 9.16.15-Debian <<>> simplifymyconfig.com MX
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42051
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;simplifymyconfig.com.com.			IN	MX

;; ANSWER SECTION:
simplifymyconfig.com.com.		1800	IN	MX	15 esa1.hc1234-47.iphmx.com.
simplifymyconfig.com.com.		1800	IN	MX	15 esa2.hc1234-47.iphmx.com.

;; Query time: 19 msec
;; SERVER: 208.67.222.222#53(208.67.222.222)
;; WHEN: Mon Jul 12 17:31:11 EDT 2021
;; MSG SIZE  rcvd: 99

The example above shows that 'simplymyconfig.com' has DNS MX records pointing to Cisco Secure Email Cloud Gateways. Your MX records may vary, but you should ensure that you have your MX pointing to your known and administrated mail gateway.

Guide Checklist

At this time, we have completed the following:

Once your MX records are in check, proceed to the next section of this document.