Why is it looking for an SPF record for rrdesp.com? That is the sending server, shouldn't it be using the domain from the From or Envelope-From instead? This SPF check looks backwards to me. Am I missing something?No, you are on the right path. SPF checks the envelope not the From: Header. Without something like DKIM, the whitelist_auth likely isn't applicable for your situation.
regards, KAM
