Here's my question.
We use Google Apps as our email service. In our DNS records - we have the google recommended SPF settings.
What's happening, however, is that in seemingly random times (based upon whatever server Google chooses to route the email through at the moment) - we get both SPF Pass, and SPF fail on our emails.
When I look at the headers - it seems that certain google servers just aren't been recognized by Google as part of their system - and they return a fail. Others - no problem.
I've been talking to support and they tell me to now implement a DKIM into our DNS.
Sounds good to me - but here's my question.
What happens on the recipient end in the event that there's an SPF failure (as I believe will happen), but the DKIM is properly set? Will the DKIM take precedence over the failure - and prevent the email from being marked as spam?