yes and no. Actually, this record may be invalid, depending on the number of MX records for example.org. SPF is limited to 10 name resolutions to resolve policy to final IP addresses. In this case name resolution scenario is: 1. Resolve SPF record itself (1 name resolution) 2. Resolve MX for exmaple.org and get the list of MX servers names (+1 name resolution) 3. Resolve A /AAA records for every MX server to IP addresses (+1 name resolution for every MX record)
so, if you have >8 MX servers this SPF record is invalid doe to name requests limitation. Probably you don't have 8 mx records and this record IS valid. In the case you 'include' something, having "mx" in SPF is not recommended, because it takes at least 3 name resolutions. Best you can, is to list IPv4 / IPv6 addresses/networks in SPF via ip4/ip6 prefixes, because it doesn't require additional name resolutions. This policy may be harder to maintain if IP changes are possible. 20.05.2017 4:58, Bryan Blackwell пишет: > Hi folks, > > Please pardon the noob question, just want to make sure this is what a proper > SPF record should look like: > > example.org. IN TXT "v=spf1 mx ~all" > > --Bryan > > -- Bryan Blackwell -- > br...@skiblack.com > > > _______________________________________________ > mailop mailing list > mailop@mailop.org > https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop -- Vladimir Dubrovin @Mail.Ru
_______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
