I want to configure SPF record for my website. Reason behind this is to use Google service i.e. Having your email in Google Now & all.
What I found from Google is:
Create a TXT record containing this text: v=spf1 include:_spf.google.com ~all
To authorize an additional mail server, add the server's IP address before just
before the ~all argument using the format ip4:address or ip6:address.
Please note I've still not added any SPF record till now to my server. So do I need to two separate records each for My server & Google?
So will it be something like below (ip address is my server's static ip address)?
v=spf1 include:_spf.google.com ip4:1.1.1.1 ~all
Assuming you're sending email directly from your website using an on-webserver SMTP server (not using Google or any other service) then that looks correct. You should only have a single SPF record per domain, and that record needs to include directives for all sources of email. So your suggested record looks right, although you probably want to put the ip4:1.1.1.1 before the include:_spf.google.com, since the former is cheaper to evaluate.
So you might want to make it:
v=spf1 ip4:1.1.1.1 include:_spf.google.com ~all
Related
I used ionos/1and1 for my company website and I send e-mails using gmail. The e-mails are hosted by ionos/1and1.
Whenever I send an e-mail to a gmail account I get the following message:
"Be careful with this message
Gmail could not verify that it actually came from domainname.com Avoid clicking links, downloading attachments, or replying with personal information."
I have created a spf recond with a txt in my domain by I guess it could be wrong this is what I'm using
v=spf1 include:_spf.perfora.net include:_spf.kundenserver.de ~all
if that one is not correct will this one work?
v=spf1 include:_spf.perfora.net include:_spf.kundenserver.de include:_spf.google.com ~all
Thank you for the help
Add a record
TXT # "google-site-verification=blabla0123456789"
to the zone file of your domain.
You can get the value for blabla0123456789 from
https://support.google.com/a/answer/183895
https://search.google.com/search-console/welcome
https://postmaster.google.com/managedomains
By the way, if you omit any spf record in your zone file ionos will automatically create an appropriate record for sending emails to gmail addresses.
I am having some issues with emails that are being sent from SF. Therefore, I am wanting to add SF's SPF record. Do I add this to my domain itself? For example, my domain is hosted from networksolutions. I go there and add the SF spf record, correct?
If so, I am having a little bit of trouble figuring out exactly where I would put the spf record in the fields. I am referrencing this help article.
https://help.salesforce.com/articleView?id=Sender-Policy-Framework-SPF-and-Salesforce-SPF-Record&language=en_US&type=1
What would I put in the host? SF is sending out the mail from an email structured as example.com . There is no subdomain like help.example.com.
Would I just put v=spf1 mx include:_spf.salesforce.com ~all in the text field?
For the host, do I put what my mxrecord is, which is: example-com.mail.protection.outlook.com
And have this image from network solutions.
Here's what you want assuming that you send outgoing email "from" ONLY salesforce and Office 365. If there are other outgoing providers (e.g., an ESP), then you need to add them as well. This would be in the root domain assuming you send from the root domain (aka #).
v=spf1 include:_spf.salesforce.com include:spf.protection.outlook.com ~all
Notes:
• You don't need the mx mechanism as that creates additional DNS lookups toward the upper limit allowed for an SPF record (10 lookups)
• Make sure that you validate your SPF record. The concern here is to keep the number of DNS lookups under 10 to pass. Use the SPF Survey.
• Considering doing DKIM and DMARC as well.
I hope this helps.
I use ubuntu 16.04 on my server and recently I've installed postfix MTA on my server following this tutorial.
The problem is the email I send goes into spam, not inbox. Any idea what's wrong and how can I fix it? Noted that my domain name isn't into black list. Because few months ago, I did in on another server and emails sent as well (they went into inbox).
Also I send email via command line interface like this:
echo "This is the body of the email" | mail -s "This is the subject line" <my_email>
What should I do now?
Also this is my /etc/postfix/main.cf file on the server and this is my DNS records on cloudflare:
As a starter you SPF record, does not allow your mail server to send mails on behalf of your domain, it only allows Zoho's servers to sent such. If 195.201.0.150 is the IP of your mail server you can allow the sending like this:
lamtakam.com TXT v=spf1 ip4:195.201.0.150 include:zoho.com ~all
this will allow the IP to send mails on behalf of the domain. Note that instead ip4:195.201.0.150 you can just write a, like this:
lamtakam.com TXT v=spf1 a include:zoho.com ~all
this allows the IP from the A record, which is the same IP, it just makes one more resolve to get the IP address.
Also Notice that the RR type in my example is TXT, this is the proper way to pass SPF records, since the SPF record type is deprecated. My advice is to create it as a TXT record and then just add the new part in your existing SPF record, this way you will have TXT and SPF records, which is a recommendation from Bind, or you can just have the TXT one
Our business emails are often considered as spam.
We are using gandi.net mails at the moment and send emails from our own mail clients using gandi smtp servers.
I've checked a few websites to test our email adresses for spam. I got the following report on one of them:
It offers me to add some SPF configuration and sign the message with DKIM.
Regarding SPF, I am offered to add a SPF record using the source server (which is the gandi mail relay server relay3-d.mail.gandi.net).
Problem is, there are many mail relay servers, and whenever I send a mail, i get one of those as the source server. They seem to be on the same IP range:
So what am I supposed to do?
add a spf record for each relay server?
like
v=spf1 a mx ip4:217.70.183.195 ~all
or maybe I can use the hostname for more readability?
v=spf1 mx a:relay3-d.mail.gandi.net ~all
Am I supposed to add the IP Range 217.70.183.193-217.70.183.201 ?
(got the IPs belows from https://www.ipaddressguide.com/cidr#range )
v=spf1 a mx ip4:217.70.183.193/32 ~all
v=spf1 a mx ip4:217.70.183.194/31 ~all
v=spf1 a mx ip4:217.70.183.196/30 ~all
v=spf1 a mx ip4:217.70.183.200/31 ~all
I am a bit concerned about screwing up our DNS configuration while doing that so please advise! I made a few changes on the DNS configuration, then I got a SPF check error on one of those spam check tools online so I reverted everything until I get more feedback.
This is exactly the purpose of include directives in SPF. You have no way of knowing what their pool of mail servers is, and it may change frequently; Include means that maintaining that list remains gandi's problem, not yours.
Their SPF support page (why didn't you look there before asking here?) says you should add include:_mailcust.gandi.net, and that record covers some large IP ranges, including those you've mentioned.
I use a different server to send mail to my mailing list. I want to add an SPF record to my domain to show that the IP of the different server is authorized to send mail (as well as the default server).
The server sending email in the example is 1.2.3.4 with the main domain of test.co.uk.
So far I have v=spf1 mx a ip4:1.2.3.4/32 mx:test.co.uk ?all", would this work for what I want?
EDIT:
I would be sending mail using sendmail. The SPF record would be to increase % of mail going to inbox and also so we can enforce -all in the near future on SPF.
Try using an online tool like http://www.mtgsy.net/dns/spfwizard.php to generate the SPF record. If you Google for "SPF Record checker", you will find many websites which will even validate the SPF record for your domain.
Let's assume your domain is test.co.uk. This makes mx the same as mx:test.co.uk. Specifying an IP as ip4:1.2.3.4 is the same as ip4:1.2.3.4/32.
That would be enough:
v=spf1 mx a ip4:1.2.3.4 ?all
Make sure you verify your SPF records using a SPF checker. Try the following one.
http://spf.myisp.ch
It does some pretty extensive testing.