SPF Record Generator

Why SPF Records Matter for Compliance

SPF records are crucial for preventing email spoofing by defining which servers are allowed to send emails on behalf of your domain. Proper SPF configuration helps secure your email communications and ensures compliance with email authentication standards.

SPF Record Existence
Valid
Record Status
Valid
Syntax Validation
Valid
Lookup count
6/10
Void Lookup Count
0
All Mechanism
Hard Fail

Sending Source	# Of LOOKUPS	SPF Part
Google	4	include:_spf.google.com
Google	4	include:_spf.google.com
Google	4	include:_spf.google.com
Google	4	include:_spf.google.com

SPF Results for domain:

softuvo.com

SPF Lookup Tree Total look ups: 6 (3 main, 3 nested)

v=spf1 include:_spf.google.com include:spf.brevo.com mx ip4:77.32.148.26 ip4:77.32.148.27 -all

_spf.google.com

SPF Lookup Tree Look ups: 3 nested

v=spf1 include:_netblocks.google.com include:_netblocks2.google.com include:_netblocks3.google.com ~all

_netblocks.google.com

SPF Lookup Tree Look ups: 0 nested

v=spf1 ip4:35.190.247.0/24 ip4:64.233.160.0/19 ip4:66.102.0.0/20 ip4:66.249.80.0/20 ip4:72.14.192.0/18 ip4:74.125.0.0/16 ip4:108.177.8.0/21 ip4:173.194.0.0/16 ip4:209.85.128.0/17 ip4:216.58.192.0/19 ip4:216.239.32.0/19 ~all

IP Records

35.190.247.0/24

_netblocks2.google.com

SPF Lookup Tree Look ups: 0 nested

v=spf1 ip6:2001:4860:4000::/36 ip6:2404:6800:4000::/36 ip6:2607:f8b0:4000::/36 ip6:2800:3f0:4000::/36 ip6:2a00:1450:4000::/36 ip6:2c0f:fb50:4000::/36 ~all

IP Records

35.190.247.0/24

_netblocks3.google.com

SPF Lookup Tree Look ups: 0 nested

v=spf1 ip4:172.217.0.0/19 ip4:172.217.32.0/20 ip4:172.217.128.0/19 ip4:172.217.160.0/20 ip4:172.217.192.0/19 ip4:172.253.56.0/21 ip4:172.253.112.0/20 ip4:108.177.96.0/19 ip4:35.191.0.0/16 ip4:130.211.0.0/22 ~all

IP Records

35.190.247.0/24

spf.brevo.com

SPF Lookup Tree Look ups: 0 nested

v=spf1 ip4:185.41.28.0/22 ip4:94.143.16.0/21 ip4:185.24.144.0/22 ip4:153.92.224.0/19 ip4:213.32.128.0/18 ip4:185.107.232.0/22 ip4:77.32.128.0/18 ip4:77.32.192.0/19 ip4:212.146.192.0/18 ip4:172.246.0.0/18 -all

IP Records

35.190.247.0/24

spf.brevo.com

SPF Lookup Tree Look ups: 0 nested

35.190.247.0/24

142.251.178.27
2607:f8b0:4023:1401::1b

35.190.247.0/24

142.251.178.27
2607:f8b0:4023:1401::1b

35.190.247.0/24

142.251.178.27
2607:f8b0:4023:1401::1b

IP Records

77.32.148.26

77.32.148.27

Scanner results

Scanner results for softuvo.com domain

A domain with a high security level has strong SPF, DKIM, and DMARC configurations. This significantly reduces the risk of email impersonation and phishing attacks.

Warnings Detected 3

Issue detected 0

View Detailed Report

DMARC

Success! Your DMARC record is valid. This means your email security is properly configured to protect against spoofing and phishing attacks. Keep up the good work and continue to monitor your DMARC reports to maintain your domain's security.

SPF

Success! Your SPF record is valid. This means your domain is correctly configured to specify which mail servers are authorized to send email on its behalf.

DKIM

Success! Your DKIM record syntax is valid. This means your domain is correctly configured to verify that incoming messages are actually from you and haven't been modified during transit. Keep up the good work!

BIMI

Good job! Your BIMI lookup is valid. This means your brand logo will display in supported email clients,enhancing your brand visibility and trust among email recipients. Continue to monitor your BIMI record to maintain your domain's security.

MTA STS Record

Your MTA-STS record is in good shape. No further action is needed.

TLS RPT Record

Success! Your TLS-RPT record is valid. This means your domain is correctly configured to receive reports about TLS security issues, helping you monitor and improve your email security. Keep up the good work!

Blacklist Domain

Success! The domain 'softuvo.com' is not on the blacklist

WARNINGS DETECTED

The 'all' tag is missing. Ensure the mechanism is either '-all' (hard fail) or '~all' (soft fail).

TAG	TAG DESCRIPTION
v (Version)	Must be 'spf1' to specify the SPF version. If missing or incorrect, the record will be ignored.
ip4 (IPv4 Addresses)	Lists IPv4 addresses allowed to send emails for the domain.
ip6 (IPv6 Addresses)	Lists IPv6 addresses allowed to send emails for the domain.
a (A Record)	Validates the sender by checking the IP address of the domain's A record.
mx (MX Record)	Checks the domain's MX records to validate the sending mail servers.
ptr (PTR Record)	Checks if the client IP has a matching PTR record. Not recommended due to high DNS lookup costs.
exists (Exists)	Checks if an A record exists for the specified domain.
include (Include)	Lists other domains authorized to send emails on behalf of the domain.
all (All)	Specifies how to handle emails from non-authorized sources, placed at the end of the record.
redirect (Redirect)	Delegates SPF checks to another domain by specifying the redirected domain.

KEY ADVANTAGES

Tool Benefits AND Enhancements

Discover the key advantages and powerful upgrades that our tools bring to your email security strategy.

Discover the Key advantages

Discover the Key advantages and powerful upgrades that our tools bring to your Email Security Strategy

Simplified SPF Record Creation

The SPF Record Generator tool helps users easily create accurate SPF records without requiring advanced technical knowledge.

Error-Free DNS Updates

Automatically generates SPF records formatted correctly to avoid configuration errors during DNS updates.

Time Efficiency

The SPF Record Generator tool streamlines the record creation process, saving time for administrators and IT teams.

Customizable SPF Policies

Allows users to tailor SPF records to their specific email authentication needs, enhancing security and deliverability.

FAQ

Frequently Asked Questions

An SPF (Sender Policy Framework) record is a DNS record that specifies which mail servers are allowed to send emails on behalf of your domain. It helps prevent email spoofing and phishing attacks, ensuring that your emails are delivered properly and reducing the risk of your domain being blacklisted.

To use the SPF Record Generator, enter your domain name, choose if you want to use SPF redirection, specify any additional domains or IPs to include, select your failure policy, and click "Generate." The tool will create a valid SPF record that you can then add to your DNS settings.

In your SPF record, include any email servers or domains that are authorized to send emails for your domain. This may include IP addresses, other domains, or email service providers you use. Make sure to only include trusted sources to avoid unauthorized email usage.

The failure policies determine what happens when an email fails the SPF check. "None" means no specific action is taken, "SoftFail" marks the email but still delivers it, and "HardFail" rejects the email outright. Choose based on how strictly you want to enforce SPF checks and your email deliverability needs.

Update your SPF record whenever you change your email service providers, add new servers, or modify your email sending practices. Regular updates ensure that your SPF record accurately reflects your current email setup and continues to protect against spoofing.

Yes, SPF records can affect email delivery. Different email providers may interpret SPF records differently, and a misconfigured SPF record could lead to emails being marked as spam or rejected. It’s important to regularly check and update your SPF records to ensure compatibility with all major email providers.

SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) are both email authentication methods, but they serve different purposes. SPF verifies the sending mail servers, while DKIM uses digital signatures to confirm the authenticity of the email’s content. Using both provides a more robust email security setup.

No, you should only have one SPF record per domain. If you need to include multiple sources, you should combine them into a single SPF record using the include mechanism or other SPF mechanisms. Having multiple SPF records can lead to unexpected behavior and delivery issues.

You can create separate SPF records for each subdomain or use a single SPF record for the parent domain that applies to all subdomains. If using a single record, make sure it covers the subdomains adequately. Ensure that SPF policies for subdomains align with your overall email security strategy.

SPF records have a character limit of 255 characters per DNS record, and the total length of all ‘include’ mechanisms combined should not exceed 10 DNS lookups. If your SPF record is too long, it can lead to issues with SPF checks. Consider optimizing your SPF record by removing unnecessary entries or consolidating records.

Our Happy Clients

1000+

Emails

143,887

Compliant

136,696

Failures

5,399

Countries

60+

Domains Analyzed

27,000+

Used and Trusted by Industry Leaders

“YourDMARC secures emails, saves our time. Our small healthcare practice struggled with email security. YourDMARC's DMARC/DKIM combo and real-time alerts are a lifesaver! HIPAA compliance is a breeze now, and their support team is top-notch. ”

Anshul A. Healthcare Manager

“YourDMARC responds quickly to the needs of our business. I've worked with many companies and what is most impressive and unique about yourDMARC is their ability to act as a true partner with aligned interests and not just one party to a transitional relationship. ”

Nick Kitchin CEO at Cumulus Energy Storage

“ Give 5 Star to this product and recommend this tool to the domain professional email owners. Good use of artificial intelligence and give only required alerts and information. I will recommend this product to domain and professional email owners.”

Deepak CTO at Softuvo Solutions

SPF Record Checker