Back to Top
Gmail and Yahoo require DMARC. Make sure you're compliant. Learn More.
Home Platform SPF Raw Checker

SPF Record Validator

Get an embed
Verify and validate the SPF record for your domain.
Learn more  about SPF specifications

Improve Your SPF Email Authentication

Quickly and accurately validate your SPF record to caution against syntax and other possible errors before you publish it in your DNS.  Our advanced tool provides a comprehensive analysis of the SPF record by identifying gaps, errors, or misconfigurations that may compromise email authentication.

Simply enter your domain name, copy and paste your SPF record, and click “Validate SPF Record.” EasyDMARC’s SPF Record Validator will provide quick results to assess the health of your SPF records.

SPF Record Validator

Frequently Asked Questions

SPF tags and their definitions

v (required)The version tag. is the only allowed value is "spf1". If it's incorrect or the tag is missing, the SPF record will be ignored.
IP4This tag should include all the IPv4 addresses that are allowed to send emails on behalf of the domain.
IP6This tag should include all the IPv6 addresses that are allowed to send emails on behalf of the domain.
aThe A record tag allows the SPF to validate the sender by domain name's IP address. If left unspecified, it takes the value of the current domain.
mxThe MX record tag checks the MX record of the mail server(s). If left unspecified, it takes the value of the current domain.
ptr (Not recommended)The PTR tag prompts a PTR check for client IP hostname(s). It's a not recommended tag as per RFC 7208, because it spends too many DNS lookups.
existsThe exists tag checks if an A record exists or not on the mentioned domain.
includeThe include tag is of top importance for a correct SPF record. Listing all your sending sources under this tag lets the recipient know that you verify all the aded domains/subdomains as legitimate sources.
all (required)All is a required tag. It should be placed at the end of the SPF record. Depending on the qualifiers used (~, +, -, ?), this mechanism indicates how the recipient should treat emails from non-authorized sources.
RedirectThe "Redirect" mechanism allows a domain to delegate its SPF authentication to another domain by specifying the redirected domain in the SPF record.
What Is the SPF Record Validator?

EasyDMARC’s SPF Record Validator tool allows you to check whether your SPF record is valid or not before publishing it in your DNS to avoid any typos and/or misconfiguration.

It checks for syntax errors, validates the record's elements, and checks for previously published SPF records. Our SPF record testing tool also advises on optimizing the SPF record for better performance.

What Needs To Be in an SPF Record?

Your SPF record should include the domains and IP addresses of all services that send emails from your domain, such as your own mail server, third-party services, or a combination of both.

If you are using Google Workspace (formerly G Suite), you should include a reference to Google Workspace in your SPF record. Plus, the SPF record should also include any applicable modifiers, such as "include" or "redirect" commands to specify how to handle mail from other sources.

How To Correct a Failed SPF Record Message?

There are 2 common SPF failures: failing authentication or failing alignment.

For Authentication failures, whitelist the IP address of your mail server in the sender domain’s SPF Record. For Alignment failures, ensure that the return-path address matches the From: address used for outgoing emails.

In most cases, you need to get in touch with your ESP in use to fix these failures. Some providers allow customers to achieve alignment by default, while others will let you activate it from the given portal. However, some providers don’t provide SPF alignment at all.

Where Do I Set Up My SPF Record?

The point of implementing SPF is to identify which mail servers you use to send emails from your domain. After making a list of your sending domains, generate your SPF record and publish it in your DNS.

I’ve Published My SPF Records; What’s Next?

The next step is to implement your DKIM records properly. After that, you’ll be ready for DMARC deployment. Use EasyDMARC's cloud-native platform to set up your “rua” and “ruf” tags. At this stage, you’ll start receiving DMARC reports. Going through these reports carefully and ensuring DMARC enforcement will propel your domain infrastructure to new heights while guaranteeing you and your IT team some well-deserved peace of mind.

Join the 45,000+ businesses growing safely with us

Make Your DMARC Journey Simple With EasyDMARC