SPF Record Checker
Validate your domain's SPF record and check for common issues.
What is SPF?
SPF (Sender Policy Framework) is an email authentication protocol that allows domain owners to specify which mail servers are authorized to send email on behalf of their domain. It helps prevent email spoofing and improves deliverability.
How SPF Works
When a receiving mail server gets an email, it checks the sender's domain for an SPF record (a DNS TXT record). The SPF record lists all IP addresses and servers authorized to send email for that domain. If the sending server's IP matches, the email passes SPF authentication.
Common SPF Issues
- No SPF record: Your domain has no SPF record, meaning any server can claim to send as your domain.
- Too many DNS lookups: SPF is limited to 10 DNS lookups. Using too many includes/redirects will cause failures.
- Permissive policy (+all): Using +all allows any server to send as your domain, defeating the purpose of SPF.
- Missing include: If you use a third-party email service (e.g., Google Workspace, Mailchimp), you need to include their SPF record.
SPF Record Syntax
A typical SPF record looks like: v=spf1 include:_spf.google.com include:sendgrid.net -all
FAQ
How do I add an SPF record?
Add a TXT record to your domain's DNS settings with the value starting with "v=spf1" followed by your authorized sending sources.
Can I have multiple SPF records?
No, you should only have one SPF record per domain. Multiple records will cause authentication failures. Combine them into a single record.