Table of contents

How to Audit Your Cold Email Setup Before It Hurts Results

Hugo Pochet

Co-Founder @Mailpool and Cold Email Expert

Cold email performance rarely drops because your copy suddenly got worse. More often, results slide because your infrastructure drifts: a domain gets flagged, authentication breaks, inboxes age out, sending volume creeps up, or your list quality changes.
A quick audit helps you catch issues before they show up as:

Replies falling off a cliff
More bounces and blocks
Spam folder placement
“Message rejected” errors
Accounts are getting limited or suspended

This guide walks you through a practical deliverability audit you can run in under an hour—then repeat monthly.

What you’ll need before you start

Gather these items so you’re not hunting mid-audit:

A list of sending domains and inboxes (including “old” ones still active)
Access to DNS records for each sending domain
Access to your sending tool(s) and inbox provider admin (Google Workspace / Microsoft 365 / other)
Recent campaign stats (last 14–30 days): sends, bounces, opens (if tracked), replies, spam complaints

Step 1: Map your sending architecture (so you know what to audit)

Most teams can’t fix deliverability because they don’t have a clean picture of what’s actually sending.

Create a simple table with:

Sending domain
Inbox provider (Google Workspace / Microsoft 365 / other)
Number of inboxes per domain
Daily volume per inbox
Warm-up status
Campaign(s) using each inbox

Red flags to spot immediately:

Too many inboxes on a single domain
Inboxes are sending wildly different volumes
“Zombie” inboxes are still connected to tools
Multiple tools are sending from the same inbox

If you only do one thing today, do this mapping. It’s the difference between guessing and diagnosing.

Step 2: Check domain health and reputation (before you touch copy)

If the domain is unhealthy, your best sequence won’t matter.

2.1 Confirm you’re using dedicated sending domains

Your cold outreach should run on domains that are separate from your primary brand domain (e.g., use trycompany.com or company-mail.com, not company.com).

Why: it reduces risk. If a sending domain gets burned, your main domain stays safe.

2.2 Look for reputation signals

You don’t need perfect data, just directional signals.

Search your sending domain in Google: are there weird indexed pages or signs it’s been abused?
Check if your domain has been blacklisted (use a reputable blacklist checker).
Watch for sudden increases in bounces or “blocked” errors; these are often reputation-related.

Red flags:

A domain that used to perform well now gets high bounce/block rates
Multiple inboxes on the same domain start failing at once
You see “550 5.7.1” style rejections more often

Step 3: Audit DNS authentication (SPF, DKIM, DMARC)

Authentication is table stakes. If it’s broken or misconfigured, you’re basically asking inbox providers to distrust you.

3.1 SPF: confirm it exists and isn’t “too long”

SPF tells recipients which servers are allowed to send for your domain.

Checklist:

SPF record exists for each sending domain
It includes the providers you actually use
It doesn’t exceed the DNS lookup limit (common failure point)

Red flags:

Multiple SPF records (should be one)
Frequent changes without documentation
SPF “permerror” or lookup limit issues

3.2 DKIM: confirm it’s enabled and aligned

DKIM signs your email so recipients can verify it wasn’t tampered with.

Checklist:

DKIM is enabled for each inbox provider
DKIM selector records exist in DNS
Your sending tool isn’t breaking DKIM by rewriting headers incorrectly

Red flags:

DKIM is missing on some domains but not others
Inboxes from the same provider behave differently (often setup drift)

3.3 DMARC: Set a policy that matches your maturity

DMARC tells recipients what to do if SPF/DKIM fails.

Checklist:

DMARC record exists on each sending domain
Policy is intentional (start with p=none if you’re early, then tighten)
Alignment is considered (domain alignment matters)

Red flags:

No DMARC record at all
DMARC set to strict enforcement without monitoring (can cause deliverability surprises)

Step 4: Audit inbox and provider settings (the silent deliverability killers)

Even with perfect DNS, inbox-level issues can tank performance.

4.1 Confirm inbox age and warm-up status

New inboxes are fragile. If you ramp too fast, you’ll get throttled or flagged.

Best practice:

Warm up inboxes for 3–4 weeks before full-scale sending
Increase volume gradually

Red flags:

Brand-new inboxes sending at full volume
Warm-up turned off too early
Inboxes that never warmed up at all

4.2 Review sending volume per inbox and per domain

A common mistake is “we added more inboxes, so we doubled volume overnight.” That’s how you burn domains.

General guardrails:

Keep daily volume conservative per inbox
Avoid stacking too many inboxes on one domain

Red flags:

Sudden volume spikes week-over-week
One inbox is doing most of the sending
Domains with too many inboxes relative to their history

4.3 Check forwarding, routing, and “Send As” configurations

Forwarding and routing rules can break alignment or create weird deliverability patterns.

Checklist:

No unnecessary forwarding chains
“Send as” addresses are configured correctly
Reply-to settings match your intent

Step 5: Audit your sending tool setup (where good setups go to die)

Tools are powerful, but they also introduce risk when settings drift.

5.1 Confirm you’re not sending from multiple tools

If the same inbox is connected to multiple platforms, you can:

Exceed provider limits
Create inconsistent sending patterns
Trigger throttling

Quick check: pick 3–5 inboxes at random and confirm they’re only connected to one sending platform.

5.2 Check tracking settings (opens/clicks)

Aggressive tracking can hurt deliverability, especially on cold outreach.

Best practices:

Consider disabling open tracking for cold campaigns
Use click tracking sparingly

If you must track, keep it consistent across inboxes. Mixed settings can create inconsistent sender reputation signals.

5.3 Validate throttling and sending windows

Your sending pattern should look human.

Checklist:

Randomized delays between sends
Sending windows aligned to recipient time zones
Daily caps per inbox

Red flags:

Large bursts at the top of the hour
Sending 24/7
No throttling at all

Step 6: Audit list quality (because “deliverability” isn’t only technical)

Infrastructure can be perfect, and you’ll still struggle if your list is weak.

6.1 Bounce rate: your fastest signal

If bounce rate rises, inbox providers assume you’re careless.

Checklist:

Validate emails before sending
Remove risky domains and catch-alls if you can’t handle them

Even small improvements in bounce rate can stabilize inbox placement quickly.

6.2 Segment by ICP and intent

When you email the wrong people, you get:

Low replies
More deletes
More spam complaints

Quick win:

Split campaigns by persona and use-case
Keep messaging tight per segment

If you’re sending one generic pitch to five different buyer types, you’re basically manufacturing “negative engagement.”

Step 7: Audit message risk factors (without turning this into a copy workshop)

This is not a full copy teardown, but you should scan for common deliverability triggers.

Checklist:

Avoid heavy HTML and images (plain text is safer)
Keep links minimal (especially early in a sequence)
Don’t overuse spammy phrases (“guaranteed”, “act now”, etc.)
Keep personalization real (fake tokens can look like spam)

Red flags:

Multiple links in the first email
Shortened URLs
Attachments in cold outreach

If your infrastructure is borderline, these “small” copy decisions can be the difference between Inbox and Spam.

Step 8: Run a controlled inbox placement test

If you can, test where your emails land.

How to do it:

Send to a small seed list across Gmail, Outlook, Yahoo, and a few corporate domains
Use the same template you’re currently sending
Check placement: Primary/Inbox vs Promotions vs Spam

What to look for: