Reflexion KBA's: RTC
Reflexion and you: SPF
Posted by , Last modified by Max McElroy on 23 October 2019 04:08 PM

OVERVIEW
This article applies to all Enterprises that use our smarthost to send mail.
What this article will cover: What is SPF and how to add Reflexion's SPF information

CONTENT

Sender Policy Framework (SPF) is used to create an "allowed senders" list for email sent by your domain name.  The entries included in an SPF record can point to individual IPs, ranges of IPs, or even another domain's SPF record.  These are combined and used to tell recipients enforcing SPF checks what IPs are allowed to send email for your domain name.  The SPF record itself is placed in the TXT field in your DNS registry.  SPF Enforcement is optional on the recipient side; just because there is a hard fail record does not necessarily mean that a message from an improper source will be blocked.

Please use the record below as a starting point:
v=spf1 mx include:reflexion.net -all

While all environments are different and yours may require additional tokens, this baseline record will authorize Reflexion to send on behalf of your domain:
 

If you already have an SPF record set up for your domain, you can simply add the statement “include:reflexion.net” to the end of the SPF record, before the “all” token.

For example; if your current SPF record is this: v=spf1 include:spf.protection.outlook.com -all

You would update it so that it reads as follows: v=spf1 include:spf.protection.outlook.com include:reflexion.net -all

 
'all' Tokens:
The character in front of the all statement in your SPF record tells the server checking a message how to handle an out of range sender.  As stated before, the recipient server has the final decision on how to handle a message after the SPF check is run.
The "-all" token shown in the above examples indicates that any message from outside of the included ranges of IPs should be hard failed
The "~all" token indicates that any message not matching this SPF record should be "soft-failed" meaning that the recipient should record the error but not outright reject the incoming message. 
The "?all" token indicates that the SPF record is in place, but is not being used for handling messages.

For more in-depth information regarding SPF records please visit http://www.openspf.org 

Any questions regarding implementation/deployment of the record should be directed to your ISP or DNS provider.  Reflexion does not have access to your DNS panel, and we will not perform these changes for you.

(54 vote(s))
Helpful
Not helpful

Comments (0)
Post a new comment
 
 
Full Name:
Email:
Comments:
CAPTCHA Verification 
 
Please enter the text you see in the image into the textbox below (we use this to prevent automated submissions).