Upgrade for Live Support

All of our paid plans come with access to our highly experienced technical support team.

  • Contact us via Email, Phone, or Ticket
  • Detailed Explanation of Your Lookup Results
  • Guidance to Help Resolve Your Problems
  • RFC Compliance Best Practices
  • Blacklist Delisting Support

Let our experts help you resolve your spf issue!

Get Spf Support
MTA-STS
BIMI
DMARC
DKIM
DOMAIN
DNS
HTTP
HTTPS
DOMAIN BLACKLIST
TCP
SMTP
BLACKLIST
CNAME
WHOIS
SPF

SPF Record

What you see when your domain has this problem
SPF is not valid Details area Ignore

More Information About Spf Record

Hostname returned a missing or invalid SPF record

Having a proper Sender Policy Framework (SPF) record increases the chances people will get emails you send. Without one, your email has a greater chance of being marked as Spam. Receiving this warning means you either don’t have a SPF record or it is invalid.

Note: Using TXT records to contain SPF information was designed as a transitional mechanism as some servers and clients did not support the new SPF record type. It is best practice to publish your SPF record via DNS as both a SPF record and and TXT record. When you do this, they MUST match exactly in accordance with RFC 4408 section 3.1.1.

Publishing an SPF record in your “example.com” DNS records tells the world which server IP addresses are authorized to send emails from “@example.com” email addresses. If you host your company email in cloud, your hosting provider should be able to provide you with instructions on how to publish your SPF record.

It get a little more complicated when you have multiple vendors handling your mail. For example, you may have your email hosted with one provider (e.g. Google Apps or Hosted Exchange, etc.) and also send marketing newsletters from another provider (e.g. Awebber, StreamSend, SendGrid, etc.). In this case you will need to merge the information from both providers.

Here’s an example. Cloud providers will typically provide an “include” for you to simply add to your record. In this case, you are telling the world to only accept mail from Google Apps (gmail) or your email marketing company.

v=spf1 include:_spf.google.com include:acmeemailmarketing.com ~all

Note: The ~all at the end is called a soft fail. It means that recipients may accept mail from another server, but it should be viewed with suspicion. If you change it to -all, you are directing the recipient to reject mail from any server other than these. The soft fail approach is safer and recommended.

If you host your own mail servers, you may need to specify the IP addresses of your mail servers in CIDR notation along with other providers. That would look like this:

v=spf1 a ip4:12.34.56.78/28 include:acmeemailmarketing.com ~all

You can use our tool HERE to test the validity of your SPF records.

SPF is the cornerstone of your email delivery strategy.

Are you confident your email is getting through?

MxToolbox is YOUR expert on email deliverability. MxDelivery Center analyzes your DMARC, DKIM and SPF to give you the insight you need to make email configuration changes and get your emails to your customer's.
Learn More

burritos@banana-pancakes.com braunstrowman@banana-pancakes.com finnbalor@banana-pancakes.com ricflair@banana-pancakes.com randysavage@banana-pancakes.com