SPF - SendGrid | Sender Policy Framework



Sender Policy Framework (SPF) is an email authentication standard developed by AOL that compares the email sender’s actual IP address to a list of IP addresses authorized to send mail from that domain. The IP list is published in the domain’s DNS record.

SPF and sender authentication

If you have an SPF record set for your root domain (i.e. yourdomain.com), you must add include:sendgrid.net before the all mechanism of this record. If you do not have an SPF record for your domain you must create a TXT record with the value:

v=spf1 include:sendgrid.net ~all

Do not create more than one SPF1 record for a given domain. If you need more than one SPF record, you will want to merge the additional SPF records into a single SPF record.

You cannot have more than 10 DNS lookups in your SPF record.

Already have an SPF record for your domain?

No problem. You simply need to add the SendGrid include mechanism lookup into your existing record.

For example, if your record looks like this:

v=spf1 a mx include:_spf.google.com include:spf.protection.outlook.com ~all

You would just need to add our lookup at the end of the string, before the ~all mechanism, like so:

v=spf1 a mx include:_spf.google.com include:spf.protection.outlook.com include:sendgrid.net ~all

Don’t want to include another hostname lookup?

If you would rather not include SendGrid’s SPF hostname lookup in your record, or perhaps you just have too many already, you can also choose to give permission to a specific IP address to send mail for your domain. This is accomplished using the ip4 mechanism.

If you have a Silver or higher level package, you can choose to specify your dedicated IP address as a lookup, meaning that only mail coming from that particular IP address will be considered a permitted sender within SendGrid for that domain. An example of such an include looks like this:

v=spf1 a mx include:_spf.google.com include:spf.protection.outlook.com ip4: ~all

If you wish to add multiple ip4 lookups (if you have an account that sends from multiple dedicated IPs, for example), simply add them into your record separated by spaces. Unlike with include:hostname lookups, a SPF1 record can have any number of ip4 includes.

Please note, the validation step in the setting up domain authentication will not recognize the ip4 mechanism, it will only accept include:sendgrid.net

For more information on SPF best practices and syntax, check out www.openspf.org

3rd Party Tools

These are some tools that might be useful to you. We do not own or support these tools, so use them at your own risk. However, we hope that they are helpful.

Record Flattening

There is an experimental tool called the dmarcian SPF Record Flattener, which should be considered experimental. From their site: “[this tool] rewrites this record by removing duplicate netblocks, collapsing any overlapping netblocks, and using 0 DNS-querying mechanisms/modifiers.”

If you choose to use this functionality, we suggest that you test it extensively to make sure that your customers will receive your emails and their servers can look up your records properly.

SPF Wizard

The SPF Wizard is a browser based SPF record generation tool. Fill out the form and the site generates an SPF record for you.


SPF Wizard

This ajax enabled wizard will guide you through the process of creating or editing a SPF record for your DNS domain. You should add this DNS record to your domain’s DNS configuration.

For complete details, please refer to the SPF record Homepage at http://www.openspf.org/

Curated by Liquid Layer Networks

At Liquid Layer Web Hosting [LiquidLayer.net], we’ve made a shared web hosting platform that’s both feature-rich and easy to make use of. Our programmers have built up a custom Linux cloud web hosting platform plus an innovative Control Panel that perfectly takes advantage of its capabilities. After long hours of programming and bug fixing on our end, we are now capable to guarantee that all of our shared web hosting services are safe, virus-free, full of capabilities and very easy-to-work-with. In addition, they feature 99.9% server uptime as well as 99.9% network uptime warranties.

Powered by:

HostCheetah Networks
Global Web Hosting, Domain Registration, and Internet Services
https://hostcheetah.net | http://hostcheetah.uk

PC Helper | Est 1996 - Web Hosting | US, AU, UK, Finland, Bulgaria | :sunglasses: