I’m trying to understand SPF records. I was under the impression SPF is used to give permission to hosts to send emails on the domain’s behalf (eg: from address). But this doesn’t look right.
I have a test domain: crine.net I added a TXT SPF record: “v=spf1 a mx ip4:188.8.131.52 include:_spf.google.com ~all”
;; ANSWER SECTION: crine.net. 300 IN TXT "v=spf1 a mx ip4:184.108.40.206 include:_spf.google.com ~all"
I did successfully get the email within Gmail. However, I found this in the headers:
Received-SPF: fail (google.com: domain of firstname.lastname@example.org does not designate 220.127.116.11 as permitted sender) client-ip=18.104.22.168; Authentication-Results: mx.google.com; spf=hardfail (google.com: domain of email@example.com does not designate 22.214.171.124 as permitted sender) firstname.lastname@example.org;
I don’t get it. I sent the email to @crine.net. 126.96.36.199 is my vhost IP address. It is in my spf record. What is this message actually saying? Why does it appear to me to be saying email@example.com doesn’t permit my vhost as a permitted sender?
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
Click below to sign up and get $100 of credit to try our products over 60 days!