From owner-freebsd-questions@FreeBSD.ORG Sat Feb 18 17:34:04 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7549E106566B for ; Sat, 18 Feb 2012 17:34:04 +0000 (UTC) (envelope-from juvix88@gmail.com) Received: from mail-qw0-f54.google.com (mail-qw0-f54.google.com [209.85.216.54]) by mx1.freebsd.org (Postfix) with ESMTP id 2125D8FC0C for ; Sat, 18 Feb 2012 17:34:03 +0000 (UTC) Received: by qaea17 with SMTP id a17so5218870qae.13 for ; Sat, 18 Feb 2012 09:34:03 -0800 (PST) Received-SPF: pass (google.com: domain of juvix88@gmail.com designates 10.229.137.85 as permitted sender) client-ip=10.229.137.85; Authentication-Results: mr.google.com; spf=pass (google.com: domain of juvix88@gmail.com designates 10.229.137.85 as permitted sender) smtp.mail=juvix88@gmail.com; dkim=pass header.i=juvix88@gmail.com Received: from mr.google.com ([10.229.137.85]) by 10.229.137.85 with SMTP id v21mr9877219qct.70.1329586443274 (num_hops = 1); Sat, 18 Feb 2012 09:34:03 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:disposition-notification-to:date:from:user-agent :mime-version:to:cc:subject:references:in-reply-to:content-type :content-transfer-encoding; bh=Cx6nZhDcNnR07KLfbPwdDGnhIQwEcIca0V9E2JR2Cqk=; b=pb9FZGnAI6vcpXq9mosY7mOGqbVmjlnByji6pK7v7XUU0LJ50O2c9spg3ir3h/1bMv Q56tStDWRy4gEuFtmFQn1HZxAolSv/WVjV/r5zw+0wcrzp/LgU1We0X2vd/3gF+JWkns lorpwP2AnOzsdXn+y7kKKHTVZ1Ma6j4jcjOeo= Received: by 10.229.137.85 with SMTP id v21mr8422052qct.70.1329586443086; Sat, 18 Feb 2012 09:34:03 -0800 (PST) Received: from [192.168.0.199] (ool-18ba4338.dyn.optonline.net. [24.186.67.56]) by mx.google.com with ESMTPS id hr9sm19597435qab.12.2012.02.18.09.34.02 (version=SSLv3 cipher=OTHER); Sat, 18 Feb 2012 09:34:02 -0800 (PST) Message-ID: <4F3FE111.9050801@gmail.com> Date: Sat, 18 Feb 2012 12:34:09 -0500 From: Jonathan Vomacka User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.1) Gecko/20120208 Thunderbird/10.0.1 MIME-Version: 1.0 To: Waitman Gobble References: <4F3FD761.4020605@gmail.com> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: Question regarding SPF records X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 18 Feb 2012 17:34:04 -0000 On 2/18/2012 12:18 PM, Waitman Gobble wrote: > > On Feb 18, 2012 8:53 AM, "Jonathan Vomacka" > wrote: > > > > I am inquiring about how to setup a proper SPF record. I know there > are SPF wizards/generators available but each seem to have a different > "opinion" of what should be included and what should not be included. > > > > Let me give you a scenario of my setup, and hopefully someone can > help me out. > > > > My domain is: test.com > > My mailserver hostname is: mail.host.com which > also has a MATCHING PTR record > > mail.host.com (for example) resolves to > 50.1.1.1 and 50.1.1.1 resolves to mail.host.com > > > > This is a STANDALONE mail server which will receive and send email > without any VIP's or load balancing. There is however one additional > host that will send out mail from the domain but it wont be receiving > mail, it will only be used as an SMTP (outbound only) server attached to > a website automailer which is on a seperate webserver... It only > generates error reports and sends them out... so technically it isn't a > full mail server but it will be sending (outbound only) mail on behalf > of the domain. > > > > The additional host is: mail2.test.com which > resolves to 50.2.2.2 and there is a Matching PTR. > > > > These are the ONLY mail servers and IP addresses that will be sending > out mail from the test.com domain. Some websites say I > should use -all and others say -all will cause some MTA's to reject and > ~all is better to use even if those are the only two hosts sending out mail. > > > > Would you be able to assist with a solid SPF record? > > _______________________________________________ > > freebsd-questions@freebsd.org > mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org > " > > I usually choose soft fail because a user might decide to use a mobile > device for email. > > Waitman Gobble > San Jose California USA > Waitman, Fair enough statement. I also generated the following SPF using a wizard. Let me know if this looks correct: teamwarfare.com. IN TXT "v=spf1 a mx a:mail.teamwarfare.com a:mail2.teamwarfare.com ip4:66.90.73.80 ip4:216.250.250.148 ~all" I wouldn't need an "include:" or "ptr" statement in this right? I would told "include:" was to include OTHER domains that are allowed to send e-mail, but then again I see some people writing the domain again as an include. Also is PTR good to use or not?