Hi, I am strugling with this strange SPF authentication issues.
I have a customer who sends comfirmation email from web server.
The domains SPF record is properly set, allowing emails from 12.143.125.247.
But when I test, I get “spf=none” at recieving side, causing DMARC error.
Mail-from domain is same as header from domain. I can’t figure out why this SPF authentication fails. Any comments will be appreciated!
That domain is not registered, so whatever SPF you think you have, does not exist.
% whois makenoise.co.jp
[ JPRS database provides information on network administration.
Its use is ]
[ restricted to network administration purposes. For further in
formation, ]
[ use 'whois -h whois.jprs.jp help'. To suppress Japanese outpu
t, add'/e' ]
[ at the end of command, e.g. 'whois -h whois.jprs.jp xxx/e'.
]
No match!!
With JPRS WHOIS, you can query the following domain name inform
ation
sponsored by JPRS.
- All of registered JP domain name
- gTLD domain name of which sponsoring registrar is JPRS
Detail: https://jprs.jp/about/dom-search/jprs-whois/ (only in J
apanese)
For IP address information, please refer to the following WHOIS
servers:
- JPNIC WHOIS (whois.nic.ad.jp)
- APNIC WHOIS (whois.apnic.net)
- ARIN WHOIS (whois.arin.net)
- RIPE WHOIS (whois.ripe.net)
- LACNIC WHOIS (whois.lacnic.net)
- AfriNIC WHOIS (whois.afrinic.net)
Please don’t do that when asking others to help you. It wastes their time and can diminish interest in your request. If you must obscure a domain nave, use a resevered name like example.com to make it obvious.
That IP is in the SPF for makinoseiki.co.jp, but you aren’t sending mail claiming to be from that domain. You are sending mail from www.makinoseiki.co.jp, which has no SPF record. You need to publish an SPF record for www if you want to evaluate email addresses s that end in @www.makinoseiki.co.jp
The mail-from domain must be exactly same as the one in SPF record name. That’s what I tought too after checking later.
My customer contacted web hosting company if they can chenage mail-from, but they said no. Also DKIM is not supported either.
So to solve this issue, I must create another DNS zone of www.makinoseiki.co.jp and publish SPF record there.
DNS zone record already has www which is A record. Is it possible to have TXT record of www?
I tought SPF record can be created only 1 for each zone.
Is it possible to have mutiple SPF records if names are different?
Unless there is a CNAME present, a label can have more than one record. Only one TXT record per label can be an SPF record or they will be invalidated. As long as the SPF records are at different labels, more than one in a zone is fine.