Sign in and Edit DNS Records
Sign in to the AWS Management Console and open the Route 53 console
In the navigation pane, choose 'Hosted Zones'
On the 'Hosted Zones' page, choose the name of the domain that you want to configure
Choose `Create Record Set` to add a new record
DMARC
Create a record with:
Name: _dmarc
Type: NS
Value: ns.vali.email
Set the TTL to 600
(You can pick another Time To Live value, but we recommend 600 seconds)
Click 'Create'
Delete the “_dmarc” TXT record from your DNS zones after you’ve added the NS record if one exists
DKIM
Just as you've created an NS record for the _dmarc subdomain, now you will need to create a similar one for the _domainkey subdomain.
Add another record set
The NS record should have a name of _domainkey with a value of ns.vali.email. and a TTL of 3600
SPF
To delegate SPF to Valimail for email authentication, you'll need to add a TXT record that includes Valimail's SPF macro.
Add the following TXT record for your domain:
Name: Domain.com.
Type: TXT
Value: v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all
TTL: 600 seconds
NOTE: if you're adding the TXT record by script, be aware of escape characters necessary to keep the macro together. You may need to use double percent signs eg:
v=spf1 include:%%{i}._ip.%%{h}._ehlo.%%{d}._spf.vali.email ~all"Read more about Valimail's SPF solution.