SPF Record Checker

Validate your domain's SPF record to prevent email spoofing and improve deliverability.

>_
Enter a domain to check SPF records
Results will show SPF record details and parsed mechanisms

What is SPF?

SPF (Sender Policy Framework) is a DNS-based email authentication method that lets domain owners specify which mail servers are allowed to send email on behalf of their domain. Receiving servers check the SPF record to verify that incoming mail from a domain comes from an authorized source.

Example

example.com. 300 IN TXT "v=spf1 include:_spf.google.com ~all"

This record authorizes Google's mail servers to send on behalf of example.com and soft-fails all other senders.

How SPF Works

  • include: — Authorizes another domain's SPF senders
  • a — Authorizes the domain's A record IP
  • mx — Authorizes the domain's MX server IPs
  • ip4: / ip6: — Authorizes specific IP addresses or ranges
  • ~all — Soft fail for unauthorized senders (recommended)
  • -all — Hard fail for unauthorized senders (strictest)
  • ?all — Neutral, no policy assertion

SPF Lookup Limit

SPF has a 10-lookup limit for DNS-querying mechanisms (include, a, mx, redirect, exists). Exceeding this limit causes SPF to return a permanent error.