troubleshooting Question

setting up SPF

Avatar of Victor Kimura
Victor KimuraFlag for Canada asked on
Email ServersEmail ProtocolsEmail Software
6 Comments3 Solutions747 ViewsLast Modified:
Hi,

I have a few questions. I'm trying to set up an SPF record using the openspf site:
http://old.openspf.org/wizard.html?mydomain=ultratrust.com

The mail servers are sent and received from mail.ultratrust.com but I think that sending/receiving mail can come from one of the bluehost servers too. I want to send bulk mail to our double opt-in email subscribers using SMTP server from http://SMTP.com while the program itself is coming from a third-party site at http://emailmarketingservicesco.com. So with this in mind I'm wondering how to answer the questions:

1) The second question:
This wizard found 2 names for the MX servers for ultratrust.com: 18-77.bluehost.com and ultratrust.com. (A single machine may go by more than one hostname. All of them are shown.)
MX servers receive mail for ultratrust.com.
Do they also send mail from ultratrust.com?

Here not all the records are shown though. So do I click "yes" or "no"?

2) The third question:
Do you want to just approve any host
whose name ends in ultratrust.com? (Expensive, unreliable and not recommended)
It's referencing the PTR. It states something about expensive, unreliable and not recommended. Why?
Should I click "yes" or "no"?

3) The fourth question:
Do any other servers send mail from ultratrust.com?
Is this a comma separated list of domains or return carriage?

4) It states at the end of this page which was created dynamcially by openspf.org:
Any server allowed to send mail from bluehost.com is also allowed to send mail from ultratrust.com.
Should any server from bluehost.com be allowed to send mail or should it only be 18-77.bluehost.com?

5) The page also states:
When a mail server sends a bounce message, it uses a null MAIL FROM: <>, and a HELO address that's supposed to be its own name. SPF will still operate, but in "degraded mode" by using the HELO domain name instead. Because this wizard can't tell which name your mail server uses in its HELO command, it lists all possible names, so there may be multiple lines shown below. If you know which hostname your mail server uses in its HELO command, you should pick out the appropriate entries and ignore the rest.

i) It's under the heading "If you run BIND". So should I just ignore this?
ii) What does it mean by "...SPF will still operate, but in "degraded mode" by using the HELO domain name instead..."?
iii) Should I ignore this part "...If you know which hostname your mail server uses in its HELO command, you should pick out the appropriate entries and ignore the rest..."?

Much thanks,
Victor

ASKER CERTIFIED SOLUTION
David Beveridge
Linux Systems Admin

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 3 Answers and 6 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 3 Answers and 6 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros