How to use Qboxmail

SPF Record Configuration

By configuring an SPF Record you can indicate to the remote servers which IP addresses are authorized to send emails with your domain name as sender.
Setting up a correct SPF Record reduces the possibility that someone will send spam or phishing emails using your domain.
Setting up an SPF record is very simple, without additional costs and without impact on performance.
The configuration must be done from your DNS management panel of the domain from which your emails are sent.

Record type: TXT

Value: v=spf1 mx a -all

The above setting also authorizes emails sending by your web server.

ADVANCED settings to enable SPF records of other providers

If the emails that have your domain as sender also are sent from other providers (ex. MailChimp) you must also add their SPF settings by adding their “include”:

Record type: TXT
Value: v=spf1 mx a -all

For example, if the IP address of your mail server (or SMTP dedicated to sending DEM) is DNS you should enter:

Record type: TXT
Data: v=spf1 ip4: mx a -all

Refer to the technical support of your current DNS service provider for the correct setting on your DNS control panel.
On sender server side no settings need to be made to implement the records SPF.
The check of the correct setting of the SPF record is carried out by the server that receives the email.
Adding a correct SPF Record to your domain reduces the chance that your email will be marked as spam by mistake or that others may use your email address to send spam or phishing messages.

Check of the correct setting of the SPF record in the DNS

Qboxmail’s servers are able to validate the SPF Record for incoming emails and add a header that reports the outcome of this validation. This header can be viewed by opening the message source and it looks like this:

Received-SPF: pass (0: SPF record at designates as permitted sender)Received-SPF: pass (0: SPF record at designates as permitted sender)

When the result is “pass” it means that the SPF Record of the email sender is configured correctly.

In order to verify the correct setting of the SPF record on your domain, you can run the nslookup command from the terminal:

nslookup -q=txt

which should result in:    text = “v=spf1 mx a -all”

In some cases (i.e. fraudulent use of your email addresses to send spam) it may be desirable to set -all (HardFail) instead of ~all (SoftFail). The difference is that -all requires recipient servers to reject messages from your domain if they do not arrive from one of the IPs specified in the SPF record (while with ~all the message arriving from IP not explicitly defined in the SPF record are equally accepted but can be penalized).

Login Free trial