Re: Small Company SPF Issue

Tech-Archive recommends: Fix windows errors by optimizing your registry

Alexander Zammit wrote:
You will need the IPs for your outgoing email servers to be fixed. Normally you can pay a bit extra to a service provider and keep your IP fixed. Once that is done include the IPs into your SPF record.

Domain hosting. You normally have control over a DNS. Also the IP used for outgoing emails is fixed. So there should be no problem to put the IP for the host machine into your SPF.


regards,

Alexander Zammit
Software Development Consultant
ExchangeInbox.com MS Exchange resource site
http://www.exchangeinbox.com/


"NC Beach Bum" <NCBeachBum@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:D8684EBB-4FFE-4B55-813B-4FD83DEF89D8@xxxxxxxxxxxxxxxx

We are a very small company with a central office and 18 District Offices.
We put our SPF record in place on Tuesday but removed it on Wednesday. The
reason we removed it was our 18 District Offices were seeing their e-mail
messages rejected by various servers. The District Offices are on DSL
lines through various DSL vendors (i.e. Sprint, Verizon, etc.) They are
setup for outgoing e-mail to be our company @xxxx.com domain name and they
pickup their e-mail from our company exchange server. The SPF issue is our
@xxx.com SPF IP does not contain the IP's for the DSL carrier (i.e. Sprint,
Verizon, etc.) so the District Office e-mail messages are being rejected by
servers checking SPF records. How do small companies setup to handle SPF
and e-mail issues like this?

Another thought - in the situtation where a very small company has a domain
hosted by a domain host and they use @yyy.com but their ISP is Sprint and
Sprint has SPF records? The IP in the header will be a Sprint IP but the
e-mail is from the domain host @yyy.com?

--
NC Beach Bum



You may want to read up on how large the SPF record can be, having 18 different sections may go over the size limit. This isn't a limitation of SPF but more of DNS and TXT records. For some reason I want to say 256 characters, but I am probably wrong.

Do all these servers have the same domain name? ie building1.domain.com building2.domain.com. You can have all hosts from domain.com to be authorized in SPF. That would be easier than adding 18 individual records, but it is more open than you may want to be.

Jason
.

Relevant Pages

  • Re: Sender Spoofing via SMTP
    ... > connect to the server via Telnet to 25 and send my cubemate an email ... the decision to relay mail or not. ... It's called SPF. ... Looks up the SPF record in the DNS for the domain given in MAIL ...
    (Security-Basics)
  • Re: PTR Records
    ... >> Sorry, yes, we have 3 mail servers. ... > trouble with AOL and Compuserve, the SPF should fix that. ... > have a SPF record for all hosted mail domains. ... >> Since only dewey receives mail, ...
    (microsoft.public.windows.server.dns)
  • Re: Have SPF yet emails still going to Hotmail Junk Boxes
    ... Or is there a website I have to get them to go to? ... technical ignorance - How do i test our SPF record in the external DNS ... usually do so using a webmail account such has Hotmail or GMAIL, ... SPF record and how can we get our record to be seen there? ...
    (microsoft.public.exchange.setup)
  • Re: SPF record question
    ... >My mail server sends mail for domains pfeiffer-vacuum.co.in and pvin.net ... The record you put on pvin.net (there didn't appear to be any SPF ... This is due to vsnl.net not having an SPF record, ... Andrew Hodgson in Bromyard, Herefordshire, UK. ...
    (microsoft.public.windows.server.dns)
  • Re: Small Company SPF Issue
    ... You will need the IPs for your outgoing email servers to be fixed. ... > We are a very small company with a central office and 18 District Offices. ... > We put our SPF record in place on Tuesday but removed it on Wednesday. ... > lines through various DSL vendors (i.e. Sprint, Verizon, etc.) They are ...
    (microsoft.public.exchange.admin)