21 Nov 2009 
Support Center » Knowledgebase » More SPF
 More SPF
Solution

Advanced (ish) SPF


SPF - Sender Policy Framework - Advanced (well a little more advanced than basic!)

So we have set-up SPF for a 'default' domain example, now we want to move on to a situation where you are not using the default scenario (such as using exchange to send mail).

The basics are the same, the only difference is that you have to create the txt record manually!

Within the CP for the domain you want to add this for go to Domain Settings/Domain Info then click on DNS configuration (if you have more than one domain in this CP you will need to click on the relevant domain first).

Once the screen has loaded scroll to the bottom and click on Add DNS TXT Record (custom DNS records need to be enabled on the Plan for this to be available).

Once clicked it will load a new page with 3 available text fields to fill in. You can leave the first field (Name) and ignore the second (TTL) its the third (Data) that we are interested in :o)

You need to start all SPF records with v=spf1 then it becomes personal choice!

For this example we are going to say that I am going to be sending my emails from my website (example.com), occasionally by using webmail/SMTP (mail.example.com) and out via my exchange server which has an IP address of 1.2.3.4 which I have already set-up within the CP as exchange.example.com (see http://www.logacall.com/index.php?action=kb&article=1 for how to do this) and I want to stop any body else from sending mail.

So my TXT record would be:

v=spf1 a a:exchange.example.com mx -all

Which broken down becomes:

a - the A records for my domain (the address of where the website is for the form to send mail)

a:exchange.example.com - the A record for my exchange server

mx - the MX records for my domain (the IP address for the mail servers so I can use webmail or SMTP to send mail)

-all - stops everyone else

You can also use this if you are using your ISP's mail server to send out mail, in this case your TXT record would be something like:

v=spf1 a a:mail.isp.com mx -all

Which as you can see has the A record for your ISP added as allowed to send mail.



Article Details
Article ID: 66
Created On: 16 Jul 2008 11:14 AM

 This answer was helpful  This answer was not helpful

 User Comments Add a Comment
 Back
 Login [Lost Password] 
Email:
Password:
Remember Me:
 
 Search
 Article Options
 Add Comment
 Print Article
 PDF Version
 Email Article
 Add to Favorites
Home | Register | Submit a Ticket | Knowledgebase | News | Downloads
Language:

Help Desk Software Help Desk Software By Kayako eSupport v3.60.04