Email Best Practices
Best practice includes the use of industry-standard email authentication through DomainKeys Identified Mail (DKIM) and campaign email domains. It also means keeping your recipient lists up to date with people who’ve chosen to get your emails. Both of these help improve your deliverability and lower the chances of your emails being marked as spam.
The following sections show you how to set up email campaigns in NetSuite and give tips to help you get the best results.
For more information, see the following sections:
Five Golden Rules for Outbound Email
|
1. Always send using a FROM domain you control |
|
|
2. Manage Your Scripts |
Regularly check your SuiteScript outbound email scripts and quickly delete any scripts or customizations you’re not using anymore. |
|
3. Be Compliant |
|
|
4. Be Aligned |
If you have an email relay between NetSuite and your mailbox provider (where the MX points), make sure the MAIL-FROM (ENVELOPE-FROM, RETURN-PATH) passes the SPF check. |
|
5. Be Hygienic |
|
For an overview of the processes marketing administrators can use to ensure your company's campaigns are reaching their audience effectively, see Optimizing Email Campaigns.
DomainKeys Identified Mail (DKIM) and Email Domains
When you create your email template, you can select your company's email domain. This domain replaces each instance of the netsuite.com domain that would show in your emails by default.
For emailed forms or transaction-related emails, you can choose your company’s email domain when you set up your account. For more information, see Setting Email Preferences. Best practice is to make sure the domains you use in Campaign Email Domains and Email Preferences are ones you control the DNS records for.
You can use this same domain for DKIM email authentication. DKIM is an accepted method of verifying the emails you send. Many Internet Service Providers (ISPs) like Google and Yahoo identify email in their recipients' inboxes that has used DKIM. They also use DKIM to verify their own emails.
For more information about setting up email domains and DKIM, direct your administrator to Campaign Email Domains and DomainKeys Identified Mail (DKIM).
Domain-based Message Authentication, Reporting and Conformance (DMARC)
A domain administrator can use DMARC to see how emails from their domain will look to receiving systems. DMARC tells the receiver which validations (SPF, or DKIM, or both) will pass. This validation makes sure the email message was sent by the sender identified by the From address.
Consider setting up a DMARC policy record with your domain provider. A DMARC policy record is a DNS resource record of the type TXT. The shortest valid DMARC policy record is v=DMARC1; p=none. To assist with email deliverability analysis, include an email address (or addresses) to which reports of aggregated feedback can be sent. Use the rua tag to list the address (or addresses) for aggregate feedback reports in your policy. For example, rua=mailto:aggrep@example.com.
Setting up a DMARC policy affects the entire email infrastructure of your company. The administrator responsible for your company’s email infrastructure should be involved in setting up a DMARC policy record with your domain provider. Consider carefully how strong a policy to implement as it may have consequences. For example, if you use the optional rua tag, it might consume some of your company’s email resources, depending on the volume of received reports.
For more information about DMARC, go to https://dmarc.org/overview. You might find the Anatomy of a DMARC resource record and How Senders Deploy DMARC in 5-Easy Steps sections of that page particularly helpful. See also the DMARC specification, RFC 7489.
Sender Policy Framework (SPF)
SPF is a Simple Mail Transfer Protocol (SMTP) validation system that verifies the sender's IP address. It lets administrators determine which servers can send email messages from a particular domain. You don’t need to align SPF with your DMARC policy when you send emails from NetSuite. Only set up an SPF record if a recipient’s email system specifically asks for it.
An SPF record is a TXT record using the SPF format with your DNS provider. An SMTP server on the receiving end determines (based on the content of the DNS TXT record) whether the IP address the email message is sent from is approved for that domain.
Email or fax infrastructure or services may require that you to set up a DNS TXT record for SPF.
-
Email Infrastructure and Services: A DNS TXT record for SPF may be required by the email infrastructure or services (as presented by email domains) that you send email to. If you must include a reference to NetSuite SPF, ensure that the definition
include:sent-via.netsuite.comis a part of your SPF record. -
Fax Infrastructure and Services: A DNS TXT record for SPF may also be required by the fax infrastructure or services that you use to send faxes. For example, eFax validates SPF records. If you are registered with eFax to send faxes from NetSuite, ensure that the definition
include:mailsenders.netsuite.comis a part of your SPF record.
Don't attempt to manage access to NetSuite by adding a list of NetSuite IP addresses to an access control list. Rather than using a list of allowed IP addresses, there are better, more secure, and less fragile methods to protect your account from unauthorized access. For more information, see NetSuite IP Addresses.