A Sender Policy Framework (SPF) failure makes it more difficult for a mailbox provider to determine your identity, which may result in some email being placed in the spam or junk folder.
- An SPF record does not exist for your Mail-From (MFrom) domain.
- You changed email service providers recently and are sending from a new domain or new IP addresses. The SPF record may be missing one or more IP addresses.
- The SPF record may not be configured correctly in the Domain Name System (DNS).
- The SPF record may have been created under the sending domain instead of the return-path (MFrom) domain.
One of the more robust tools for troubleshooting SPF issues is Kitterman's SPF Query Tool.
To troubleshoot SPF problems using the SPF Query Tool:
- Check the DNS for an SPF record for your Mail-From (MFrom) address.
- Type in the domain name.
- Select Get SPF Record (if any).
- Check your SPF record to ensure it is syntactically correct and has no invalid characters.
- Enter the MFrom address and your valid SPF record.
- Select Check SPF Record.
- Conduct a full test of the SPF record to ensure the sending IP address is included in the SPF record.
- Enter the sending IP address that you want to test, the SPF record, and the full MFrom address.
- Select Test SPF Record.
If you do not have full control of the MFrom (for example, if you are using an Email Service Provider [ESP]), work with the party that controls the domain to make changes to the SPF record.