To get around your spam filter, spammers that have cached your server's IP address or mail server's host name will ignore your domain's current MX records and try to send directly to your mail server.
If you are with a shared hosting provider, you likely will not have the ability to change the inbound port on your mail server or enable a firewall that only allows inbound email from SpamHero.
Shared Hosting Providers Using cPanel
If your hosting provider is using cPanel, the most effective thing you can do is create a cPanel filter to block emails that do not contain
in the header. For detailed instructions on how to accomplish this, see the following article: Create cPanel Filter to Stop Spammers From Bypassing SpamHero
Shared Hosting Providers NOT Using cPanel
If your shared hosting provider is not using cPanel, here are a some things that can be done to prevent spammers from sending email directly to your inbox:
- Check to see if your provider's control panel gives you the ability to create a custom mail filter to block all messages that do not contain
in the header. If this is an option in your control panel, this will be the most effective way to prevent spam from getting around our filter. If you're not sure if this is an option for you, let us know what control panel you're using, and we can check to see if this is an option for you.
- Create a filter in your email software to send email that does not contain
in the raw headers to your junk folder. Check the documentation for your email software on how to create this filter. If users on your domain send email through your mail server, note that it will not contain this header and another filter will be needed to whitelist email from your own domain. Note that this solution is only useful if you get email on your PC only since most email applications on mobile devices do not have the ability to create custom filter rules yet.
- Set up private email addresses on your hosting account that are not published. Create forwards for your public addresses in SpamHero to these private accounts. Set up your email software to pick up and send email through these private accounts, but using the public addresses as the "reply-to" address on these accounts so that others only see your public addresses. Shut down the public addresses with your hosting provider. For a more detailed version of these instructions, see: Alternative method of preventing spammers sending spam directly to your server.
- If none of the above options are possible, then changing the IP assigned to your domain might work. This solution is only effective if your shared host does not have all email for their clients going to the same mail host. Even if you can change your domain's IP, some spammers will find the new IP using the "A" record in your DNS records, so this solution isn't normally recommended. Or, if you have a dedicated mail server, see:
Preventing Spammers from Sending Email Directly to Dedicated Mail Servers