Plesk & SocialBee have teamed up. Save 30% now!

Get the Deal

Knowledge Base

How to check that a domain in Plesk has the correct SPF record

 
dnsdomain namegoogleguideip

Question

How to check that a domain in Plesk has the correct SPF record?

Answer

Using online services

The most simple solution is to use online tools like the following below:

http://mxtoolbox.com/spf.aspx

http://www.kitterman.com/spf/validate.html

http://www.openspf.org/Tools

Manually via SSH

Connect to the Linux server or use the SSH Terminal extension (How to connect to a server using SSH/RDP ):

  1. Try to query with a command provided by libspf2 library like as below:

    # /usr/bin/spfquery_static -ip 10.20.30.40 -sender [email protected] -rcpt-to [email protected]

  2. A correctly set domain will print like this (using Google as an example):

    # /usr/bin/spfquery_static -ip 66.102.13.18 -sender [email protected] -rcpt-to [email protected]
    pass
    spfquery: domain of gmail.com designates 66.102.13.18 as permitted sender
    Received-SPF: pass (spfquery: domain of gmail.com designates 66.102.13.18 as permitted sender) client-ip=66.102.13.18; [email protected];

  3. A problematic domain looks more like this:

    # /usr/bin/spfquery_static -ip 11.22.33.44 -sender [email protected] -rcpt-to [email protected]
    StartError
    Context: Failed to query MAIL-FROM
    ErrorCode: (26) DNS lookup failure
    Error: Temporary DNS failure for 'example.com'.
    EndError
    (invalid)neutral
    Please see http://www.openspf.org/Why?id=from%40example.com&ip=11.22.33.44&receiver=spfquery : Reason: default
    spfquery: 11.22.33.44 is neither permitted nor denied by domain of example.com
    Received-SPF: neutral (spfquery: 11.22.33.44 is neither permitted nor denied by domain of example.com) client-ip=11.22.33.44; [email protected];

  4. To check that DNS server has information about SPF for domain example.com , use the dig utility:

    # dig -t TXT +short example.com @13.23.33.43
    "v=spf1 +a +mx -all +a:server.hostname.tld"

    where 13.23.33.43 IP address of the server.hostname.tld where DNS server is running.

Note: The SPF information can be written in either TXT format or as a dedicated SPF record. The latter is also sometimes referred to as a "type99" record. The SPF information needs to be in at least one of these formats. If both are used, these records must be exact copies of each other. These records are served by the same DNS server that serves example.com domain name.

Library libspf2 performs an SPF check in the following order: - First, it queries the DNS server for an SPF record. - If it is not defined, it tries to query for TXT. - If both attempts fail, it means there is no SPF for this domain.

For more information check Plesk Documentation and Help Portal - SPF and SRS

 

If there is no SPF DNS record found after the test, configure it in accordance with the guide below:

What is SPF and how to configure it on a Plesk server

Read the full article
Related Posts
Knowledge Base

Hosting Wiki

Industry
Partners

industry-partner_ALIBABA
industry-partner_GOOGLEPARTNER
industry-partner_MICROSOFT
industry-partner_REDHAT-r2
industry-partner_ALIBABA
industry-partner_AUTOMATTIC
industry-partner_AWS
industry-partner_DIGITALOCEAN
industry-partner_SCALEWAY

Follow us:

Facebook Twitter Linkedin Youtube Github

© 2024 WebPros International GmbH. All rights reserved. Plesk and the Plesk logo are trademarks of WebPros International GmbH.

Managed with love with Plesk WP Toolkit