Hello,
This might be a very trivial question, but being new to SPF I wanted
to double check that I understood the SPF record syntax spec correctly
...
I was looking up the DNS records for a domain owned by a small
business which I am helping on my spare time with IT issues. Their
domain shows one SPF record looking like this:
<FQDN> 838 IN TXT "v=spf1 a mx mx:<ip4_address> ~all"
Where <FQDN> is the fully qualified domain name (with a trailing dot)
and <ip4_address> is an IP4 ip address of the form 1.2.3.4
I am surprised to see this record because I thought the mx: mechanism
must be used with domain names only, not IP addresses. Using one of
the free syntax checking tools listed on on openspf.org, I get the
following message back:
Results - PermError SPF Permanent Error: Invalid domain found (use
FQDN): <ip4_address>
which seems to confirm what I thought.
The reason I still wanted to ask is that I also tried the record setup
wizard on openspf.org, and it seems to happily generate the same
record that exists today, which confuses me .....
The domain in question has only one mail server used for both inbound
and outbound mail, and has a 'mx' record and the corresponding 'a'
record. So my though is that the SPF record should be changed to
<FQDN> 838 IN TXT "v=spf1 mx ~all"
Finally, this domain has been setup over 2 years ago, and I am
wondering why the SPF record is still using the 'softfail' qualifier:
I would think it should be pretty safe at this stage to have 'fail'
instead for a final SPF record that would read:
<FQDN> 838 IN TXT "v=spf1 mx -all"
Thank you in advance for your answers and advice.
Dan.
-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com
This might be a very trivial question, but being new to SPF I wanted
to double check that I understood the SPF record syntax spec correctly
...
I was looking up the DNS records for a domain owned by a small
business which I am helping on my spare time with IT issues. Their
domain shows one SPF record looking like this:
<FQDN> 838 IN TXT "v=spf1 a mx mx:<ip4_address> ~all"
Where <FQDN> is the fully qualified domain name (with a trailing dot)
and <ip4_address> is an IP4 ip address of the form 1.2.3.4
I am surprised to see this record because I thought the mx: mechanism
must be used with domain names only, not IP addresses. Using one of
the free syntax checking tools listed on on openspf.org, I get the
following message back:
Results - PermError SPF Permanent Error: Invalid domain found (use
FQDN): <ip4_address>
which seems to confirm what I thought.
The reason I still wanted to ask is that I also tried the record setup
wizard on openspf.org, and it seems to happily generate the same
record that exists today, which confuses me .....
The domain in question has only one mail server used for both inbound
and outbound mail, and has a 'mx' record and the corresponding 'a'
record. So my though is that the SPF record should be changed to
<FQDN> 838 IN TXT "v=spf1 mx ~all"
Finally, this domain has been setup over 2 years ago, and I am
wondering why the SPF record is still using the 'softfail' qualifier:
I would think it should be pretty safe at this stage to have 'fail'
instead for a final SPF record that would read:
<FQDN> 838 IN TXT "v=spf1 mx -all"
Thank you in advance for your answers and advice.
Dan.
-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com