To publish an SPF record, you will need access to your domain’s DNS control panel. If you are using a hosting provider, this process is fairly straightforward – just check their technical documentation. If you are unsure how to do this, you can contact support team or your domain administrator for assistance.
To learn how SPF works and why it is such an important security feature, read the article “What is SPF and how to configure it for a domain?”
Start by gathering a list of all domains you own, as you need to update or prepare a new, separate SPF record for each domain. Make sure you also include inactive (aka parked) domains that do not send emails, to also protect them from abuse and potential phishing.
Identify all services which send messages on behalf of your domain(s), including external tools. This includes:
IMPORTANT: If the SPF record does not include all services or servers sending mails on behalf of your domain, receiving servers may direct messages into spam. Remember to update your record after any change in IP or sending tool.
The SPF is expressed as a single string of text, published as a DNS TXT. It consists a list of values (usually IP addresses and domain names) and tags, i.e. various mechanisms and modifiers.
Each domain must have only one SPF record.
Remember, your new SPF record may require up to 48 hours to take effect.
For example: v=spf1 ip4:192.0.2.0 ip6:2001:db8: :cd30
! The given value is an example and does not point to specifics of EmailLabs servers.
For example: v=spf1 ip4:192.0.2.0 ip6:2001:db8: :cd30 include:domainname.com
To authorize EmailLabs to send emails on behalf of your domain, add the following entry to your SPF TXT record:
include:_spf.emaillabs.co
Receiving server checks wheter an IP from which the message was sent is indicated in ip4/ip6 or whether it matches servers pointed by “include” mechanism.
Note: A single SPF record cannot have more than 255 character-string and should not contain more than 10 lookups to other domains or servers. Each parameter should be separated by a space.
// Instruction above presents only a basic overview of the mechanisms that an SPF record can be composed with. You may find records that also include ptr, exists or redirect mechanisms//
“All” mechanism (always matches) is placed at the end of the SPF record. It indicates what policy and how strictly it should be applied when the receiving server detects a sender that is not authorized in your SPF record.
The “all” mechanism can contain various qualifiers:
For example: v=spf1 ip4:192.0.2.0 ip6:2001:db8: :cd30 include:domainname.com ~all
Mechanisms listed after the “all” will be ignored, so remember to put it at the very end of the record.
In addition to SPF, we also recommend configuring DKIM and DMARC. The above authentication methods provide enhanced domain security and increase the likelihood of proper delivery of Emails to the recipient’s mailbox.
Email Deliverability Specialist in CPaaS
Natalia abandoned her career as an experimental biologist for the digital universe and new technologies. She likes to know something about everything and everything about something. Breathlessly follows and describes news from the email world. Supports EmailLabs users in integrating, analyzing, and reporting deliverability. Helps to increase domain security with implemented DNS records and BIMI standard, moreover educates on good mailing practices.
See more articles
Antispam, Best practices, BIMI
The AuthIndicators Working Group (BIMI Group) recently announced that Apple systems such as iOS 16, iPadOS 16, and macOS Ventura will support BIMI starting this fall. Thus, the infographic showing...
Email marketing communication needs to be properly handled to be effective. Apart from technical matters, building positive subscriber engagement with email communication is very crucial. Nowadays, consumers feel overwhelmed...
RBL is a dynamic, real-time list of IP addresses that are active spammers (intentional actions) or accidental sources of spam. A blacklist based on domain names is called a...
Have you noticed that there is a verified email address badge next to some senders in your inbox? For example – iCloud Mail shows a small stamp with a...
An ESP (Email Service Provider) is a software-based service for email distribution, often based on its servers, optimized for high (mass) traffic. Many of them enable integration with CRM...
Best practices, Deliverability
What is email deliverability? While talking to eCommerce store owners, marketing specialists, or reading various reports on email communication, you may often get the impression that the main criteria...
This article was created in cooperation with CyberFolks, a provider of hosting services for thousands of customers in Poland, helping users to choose and purchase a domain name....
EmailLabs initially will handle Bloomreach (formerly Exponea) emails for Polish e-commerce and retail clients, soon to expand to other CEE countries. ‘We choose EmailLabs for its high email deliverability’....
Vercom, to which EmailLabs belongs, is a European company, fully compliant with the provisions of GDPR and based solely on its own servers located in CEE. We provide our...
With the emergence of the Covid-19 pandemic, many brands have been challenged to adapt in a short period to the changed reality and new consumer attitudes. That meant reorganizing...
From September 20th, 2021, Apple users may enjoy new operating systems for mobile devices. This, of course, refers to iOS 15 and iPadOS 15. The company has prepared several...
This year, Black Friday falls on November 26th while Cyber Monday on November 29th. So it seems that there are 7 weeks left to prepare well for the battle...
We are happy to announce that we have positively completed the BIMI certification process. By implementing the new security standard we are able to protect ourselves even more against...
The ISO certificate confirms that our organisation has been certified in compliance with the standards, practices and policies to handle information security. It contains rules for establishing, maintaining and...
