Step 1:

Using an SPF record you can specify which servers are allowed to send emails with your domain name.

Log in to your KAS (Technical Administration) panel and click on Tools -> DNS Settings.

Click the Edit icon right next to the domain and then click on Add a new DNS record.

Step 2:

Example entry: your-domain.com. IN TXT "v=spf1 mx a ?all"

The Name field remains blank. The Type is TXT (SPF). The Priority remains 0. Then enter the desired parameters in the Data field.

Click the Save button to apply the new entry.

Step 3:

The new entry will now show up in the table.

IMPORTANT: After the change it could take up to 3 or 4 hours until the new settings are active.

Step 4:

SPF syntax explanations


Qualifiers

+ for a PASS result. It specifies authorized senders. The email will therefore be accepted. This qualifier is also used by default if no qualifier is explicitly specified.

- for a HARDFAIL. It specifies unauthorized senders. The email will therefore be rejected.

~ for a SOFTFAIL. It specifies unauthorized senders. The email will be accepted anyway, but can be marked as spam.

? for a NEUTRAL result. Senders whose validity cannot be determined and that have to be accepted. The email will therefore be delivered.


Mechanisms

a : The A-/AAAA record of the sending or explicitly specified domain.

mx : The MX record of the sending or explicitly specified domain.

ptr : The PTR record of the sending or explicitly specified domain.

ip4 : The IPv4 address or the IPv4 subnet that is allowed to send emails.

ip6 : The IPv6 address or the IPv6 subnet that is allowed to send emails.

include : SPF query of the specified domain. The domain should have a valid SPF record.

all : Matches always

As far as an argument for a mechanism should be handed over, is must be divided by a colon character.


Example:

v=spf a:mail.example.org -all