SPF entries on relay.plus.net and madasafish
FIXED- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- :
- Re: SPF entries on relay.plus.net and madasafish
22-10-2018 10:24 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Here's my yearly "has anything changed" email, with a twist.
The recommendation has always been to put in
v=spf1 +a +mx +include:madasafish.com +include:plus.net ~all
to our DNS settings, as we route through plus.net for outgoing email. This has been working fine, but now I get
evaluating...
Results - PermError SPF Permanent Error: Too many DNS lookups
when testing the domain on https://www.kitterman.com/spf/getspf2.py
Looks like the above is resolving to > 10 DNS lookups hence the fail.
Perhaps the +include:plus.net entry is now superfluous - anyone from plus.net care to comment? @bobpullen ?
many thanks
Fixed! Go to the fix.
Re: SPF entries on relay.plus.net and madasafish
22-10-2018 2:19 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
As far as I'm aware, we don't support SPF entries still and have no plans to.
However, I've gone to the products guys for further assistance, and I'll update you when I hear back.
22-10-2018 2:50 PM - edited 22-10-2018 2:50 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
@robatworkuk, it looks like somebody has tidied up the madasafish.com record, and there may also have been some changes to .plus.net
You need to remove the include for the .plus.net domain. It was never intended for customer use, and is more relevant to us when sending marketing/service notices etc.
The Madasafish record incorporates all of the customer-facing relays, so is all you need to be concerned with.
Bob Pullen
Plusnet Product Team
If I've been helpful then please give thanks ⤵
Re: SPF entries on relay.plus.net and madasafish
23-10-2018 9:44 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
@bobpullen wrote:
You need to remove the include for the .plus.net domain. It was never intended for customer use, and is more relevant to us when sending marketing/service notices etc.
The Madasafish record incorporates all of the customer-facing relays, so is all you need to be concerned with.
Hello Bob,
I actually did this yesterday anyway to test, as I was getting errors that my SPF record was doing > 10 DNS lookups.
All my tests so far have passed SPF, so I guess the madasafish.com record contains all the outgoing servers eg. avasout06, avasout07 etc. Thanks for the reply.
Re: SPF entries on relay.plus.net and madasafish
26-02-2019 11:59 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Just thought I'd bump this thread to mention that I found it invaluable in helping to add SPF records to my own domains (where the outgoing mail is routed through plusnet servers). I successfully added the TXT record :
v=spf1 +a +mx +include:madasafish.com ~all
It's easy to show that this works by sending a test email to a GMAIL address and getting GMAIL client to show details of the "original message".
Before implementing SPF it showed Received-SPF status as "spf=neutral", whereas after implementing SPF it shows as "spf=pass" (permitted sender). This increase in "credibility" seems useful to help avoid getting rejected as spam.
I just hope that forthcoming changes on plusnet side don't break it 🙂
Re: SPF entries on relay.plus.net and madasafish
04-03-2019 8:52 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
@fasty wrote:
Just thought I'd bump this thread to mention that I found it invaluable in helping to add SPF records to my own domains (where the outgoing mail is routed through plusnet servers). I successfully added the TXT record :
v=spf1 +a +mx +include:madasafish.com ~all
Whilst this is undoubtedly a good thing, I have had
v=spf1 +a +mx +ip4:212.159.14.0/24 +ip4:212.159.8.107 +include:madasafish.com ~all
|
in my domain TXT records for years, and as you can see still occasionally getting the bounces. Nothing in the last week or two however, but the thread hasn't been updated by anyone from plusnet so I don't know if this is just random good fortune or something has changed.
Re: SPF entries on relay.plus.net and madasafish
18-04-2019 9:17 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
NB, the correct syntax is not to have a '+' in front of include, eg:
v=spf1 +a +mx include:madasafish.com ~all
Re: SPF entries on relay.plus.net and madasafish
18-04-2019 11:32 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
@Teece wrote:
NB, the correct syntax is not to have a '+' in front of include, eg:
v=spf1 +a +mx include:madasafish.com ~all
This is, of course, correct.
https://tools.ietf.org/html/rfc7208#section-5.2
In hindsight, the name "include" was poorly chosen. Only the evaluated result of the referenced SPF record is used, rather than literally including the mechanisms of the referenced record in the first. For example, evaluating a "-all" directive in the referenced record does not terminate the overall processing and does not necessarily result in an overall "fail". (Better names for this mechanism would have been "if-match", "on-match", etc.
The "include" mechanism makes it possible for one domain to designate multiple administratively independent domains. For example, a vanity domain "example.net" might send mail using the servers of administratively independent domains example.com and example.org. Example.net could say IN TXT "v=spf1 include:example.com include:example.org -all"
Re: SPF entries on relay.plus.net and madasafish
18-04-2019 7:49 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
@Teece wrote:
NB, the correct syntax is not to have a '+' in front of include, eg:
v=spf1 +a +mx include:madasafish.com ~all
erm.. re-visiting the specs, it appears that the + is optional, so it shouldn't cause any problems if present, and presumably
v=spf1 a mx include:madasafish.com ~all
… will work just as well (it seems to)
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- :
- Re: SPF entries on relay.plus.net and madasafish