Learn How To Build An SPF Record In Easy Steps Using An SPF Record Example

SPF is an email authentication protocol that allows the users to specify the authorized IP addresses for sending an email on behalf of the organization’s domain. The entire authentication procedure is carried out using an SPF record, which helps an organization verify the mail server to check whether the sender is legit to send the email for a particular domain.

Any SPF record is a DNS TXT record file that contains a list of approved IP addresses that are permitted to send mail on behalf of the organization’s domain. By following an SPF record example, anyone can quickly learn how to build an SPF record in a few simple steps. The following is a description of such actions that help in making an SPF record. Alternatively, one can use an SPF generator to create an SPF record instead of creating it manually.

spf validator

Steps To Build An SPF Record

Collect And List All The IP Addresses That Are Used For Sending Email

It is essential to know which mail servers are being used for sending emails from the organization’s domain. Several mail servers may be in use for sending emails. Make a list of the mail servers used, including mail servers like web servers, Microsoft Exchange mail, and ISP mail server.

Include All The Domains

The next task is to specify all the domains used to send emails. Also include the domains that are not used for sending emails.

Build The SPF Record

The SPF record inspects the sender’s identity by comparing it with all the IP addresses present in the list of legit IP Addresses associated with the sender’s mail server published in the DNS records. A typical SPF record example looks like this:

v=spf1 ip6:1.4.3.6 ip6:222.355.4.5. ~all

The procedure to create an SPF record similar to this example involves the following steps:

  • The SPF syntax must start by mentioning the SPF version. The SPF version number is usually cited as v=spf1. There is also an SPF version two called Sender ID.
  • Following the version, mention all the IP addresses that are authorized to send emails for the domain. It typically looks like: ip6:1.4.3.6 ip6:222.355.4.5.
  • A tag follows the IP addresses. The most commonly used is the SPF ~all tag. A tag’s function is to suggest what action to take regarding an email or server that is detected as unauthorized. With this step, the SPF record is successfully created.

Publish The SPF Record As DNS TXT

Once the SPF record is created and ready, it’s time to publish it to the DNS in TXT format. The DNS Manager can easily insert and publish the SPF records into the DNS.

Test The SPF Record

It is essential to validate SPF records to check whether they are set correctly. You can use an SPF validator to check if the SPF record is proper or not.

From the above discussion, one gets to know how to create an SPF record easily in a few steps by following an SPF record example. An SPF record helps organizations eliminate spoofing, spam, and phishing attacks by malicious actors using their domain.

Join the thousands of organizations that use DuoCircle


Find out how affordable it is for your organization today and be pleasantly surprised.

Interested in our Partner Program for MSPs and VARs? Visit Our MSP Partner Program.

Pin It on Pinterest