Assistance with SPF Records for BIND
Jonathan Vomacka <juvix88@gmail.com> Sat, 18 February 2012 16:58 UTC
Return-Path: <owner-namedroppers@ops.ietf.org>
X-Original-To: ietfarch-namedroppers-archive-gleetwall6@ietfa.amsl.com
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4843321F8597 for <ietfarch-namedroppers-archive-gleetwall6@ietfa.amsl.com>; Sat, 18 Feb 2012 08:58:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UCYqupzil3Ms for <ietfarch-namedroppers-archive-gleetwall6@ietfa.amsl.com>; Sat, 18 Feb 2012 08:58:26 -0800 (PST)
Received: from psg.com (psg.com [IPv6:2001:418:1::62]) by ietfa.amsl.com (Postfix) with ESMTP id 6BE8721F8593 for <namedroppers-archive-gleetwall6@lists.ietf.org>; Sat, 18 Feb 2012 08:58:23 -0800 (PST)
Received: from majordom by psg.com with local (Exim 4.77 (FreeBSD)) (envelope-from <owner-namedroppers@ops.ietf.org>) id 1RynVI-000333-NM for namedroppers-data0@psg.com; Sat, 18 Feb 2012 16:51:20 +0000
Received: from mail-qw0-f45.google.com ([209.85.216.45]) by psg.com with esmtps (TLSv1:RC4-SHA:128) (Exim 4.77 (FreeBSD)) (envelope-from <juvix88@gmail.com>) id 1RynVC-00032m-Ry for namedroppers@ops.ietf.org; Sat, 18 Feb 2012 16:51:14 +0000
Received: by qabg40 with SMTP id g40so2043029qab.11 for <namedroppers@ops.ietf.org>; Sat, 18 Feb 2012 08:51:12 -0800 (PST)
Received-SPF: pass (google.com: domain of juvix88@gmail.com designates 10.229.137.80 as permitted sender) client-ip=10.229.137.80;
Authentication-Results: mr.google.com; spf=pass (google.com: domain of juvix88@gmail.com designates 10.229.137.80 as permitted sender) smtp.mail=juvix88@gmail.com; dkim=pass header.i=juvix88@gmail.com
Received: from mr.google.com ([10.229.137.80]) by 10.229.137.80 with SMTP id v16mr3084616qct.31.1329583872203 (num_hops = 1); Sat, 18 Feb 2012 08:51:12 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:disposition-notification-to:date:from:user-agent :mime-version:to:subject:content-type:content-transfer-encoding; bh=lkBSbKIz8TH+CiQaeFCjRNik4QR5MZhqUtuL3vzkr6w=; b=PMkvNrNV9bs6AJKWlMv19ZNGykmDOpI9dfjPGiDh9nFVH6izwnFfPSp77pVbQF80iI 60HbjKOjkFqSUO72pbzHwt4v7o4XZTtqNmD1v0rLgSxrlQkm46u6PNDDf2/zZLbg7QRf TNenkFijC+w8J+3zy1/M7M/pRAcLgImt3C99o=
Received: by 10.229.137.80 with SMTP id v16mr2689005qct.31.1329583870365; Sat, 18 Feb 2012 08:51:10 -0800 (PST)
Received: from [192.168.0.199] (ool-18ba4338.dyn.optonline.net. [24.186.67.56]) by mx.google.com with ESMTPS id ec5sm28121928qab.21.2012.02.18.08.51.09 (version=SSLv3 cipher=OTHER); Sat, 18 Feb 2012 08:51:09 -0800 (PST)
Message-ID: <4F3FD704.4050108@gmail.com>
Date: Sat, 18 Feb 2012 11:51:16 -0500
From: Jonathan Vomacka <juvix88@gmail.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.1) Gecko/20120208 Thunderbird/10.0.1
MIME-Version: 1.0
To: namedroppers@ops.ietf.org
Subject: Assistance with SPF Records for BIND
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Sender: owner-namedroppers@ops.ietf.org
Precedence: bulk
List-ID: <namedroppers.ops.ietf.org>
List-Unsubscribe: To unsubscribe send a message to namedroppers-request@ops.ietf.org with
List-Unsubscribe: the word 'unsubscribe' in a single line as the message text body.
List-Archive: <http://ops.ietf.org/lists/namedroppers/>
BIND Community Support, I am inquiring about how to setup a proper SPF record? I know there are SPF wizards/generators available but each seem to have a different "opinion" of what should be included and what should not be included. Let me give you a scenario of my setup, and hopefully someone can help me out. My domain is: test.com My mailserver hostname is: mail.host.com which also has a MATCHING PTR record mail.host.com (for example) resolves to 50.1.1.1 and 50.1.1.1 resolves to mail.host.com This is a STANDALONE mail server without any VIP's or load balancing. There is however one additional host that will send out mail from the domain but it wont be receiving mail, it will only be used as an SMTP server attached to a website automailer... It only generates error reports and sends them out... so technically it isn't a full mail server but it will be sending (outbound only) mail on behalf of the domain. The additional host is: mail2.test.com which resolves to 50.2.2.2 and there is a Matching PTR. These are the ONLY mail servers and IP addresses that will be sending out mail from the test.com domain. Some websites say I should use -all and others say -all will cause some MTA's to reject and ~all is better to use even if those are the only two hosts sending out mail. Would you be able to assist with a solid SPF record?
- Assistance with SPF Records for BIND Jonathan Vomacka