Qualys Email Notification Change

Himanshu Kathpal

Last updated on: July 7, 2023

Qualys is in the process of strengthening its email security posture, which includes alignment of SPF (Sender Policy Framework), DKIM (Domain Keys Identified Mail), and implementation of DMARC (Domain-based Message Authentication, Reporting, and Conformance) for various mailing domains used for its operations.

At present, the domain qualys.com is used for both Qualys corporate emails and Qualys Cloud Platform (QCP) customer emails. As a security best practice, we are segregating the corporate email domain from the platform bulk emails by using qualys.net, which would be the dedicated email domain for our platform emails. As a result, the domain used for account management emails, scan notifications, and daily vulnerability feed emails will change from @qualys.com to @qualys.net. Customers may require to add @qualys.net to their approved senders’ lists and domains to avoid any quarantine or incorrect categorization of Qualys emails.

Shared Cloud Platform customers, who have configured their own (non-Qualys) domains in their subscription for email notifications on scan status and scheduled reports, will need to add the Qualys MX IPs mentioned below to their SPF records. In case customers have enforced strict DMARC policies then they need to whitelist the mailing domain *@qualys.net on their email gateway/email security solutions.

v=spf1 ip4:167.89.36.126 ip4:3.225.140.251 ip4:168.245.25.245 ip4:158.101.215.255 ip4:168.138.106.117 ip4:139.87.106.250 ip4:139.87.105.228 ip4:64.39.96.0/20 ip4:64.41.200.0/24 ip4:148.163.158.195 ip4:148.163.156.198 ip4:154.59.121.40 ip4:208.74.204.0/22 ip4:46.19.168.0/23 ip4:103.216.98.0/24 ip4:165.193.18.0/24 ip4:209.112.104.0/22 ip4:64.207.216.0/22 ip4:162.248.184.0/22 ip4:193.123.67.188 ip4:103.75.172.20 ~all

Private Cloud Platform customers do not need to make any change if they have configured their own email domains and SMTP gateways. The default configuration for PCP email domains will also change to @qualys.net.

The change of default domain for QCP emails to qualys.net is scheduled by end of Q4,2022 for the following applications:

  • Qualys Web App Scanning
  • Qualys Security Assessment Questionnaire
  • Continuous Monitoring
  • Malware Scanning

Similar changes will be implemented in other Qualys Cloud Platform apps by Q4, 2022. Customers are requested to take a note of this change and allow the new domain ‘qualys.net’ at the earliest.

We appreciate assistance from our customers in enhancing our platform security. For any queries, feel free to reach out to https://www.qualys.com/support/.

Show Comments (1)

Comments

Your email address will not be published. Required fields are marked *

  1. worth making sure you don’t have one of your own domain senders in scheduled report config, have to choose qualys.net as the sender, not the SMTP of one’s own account, this upsets DMARC.