I’m currently using 2 providers to send e-Mails and one host which directly sends e-Mails.
Personal mails are sent via Google and application generated via a bulk e-mail provider.
Both are sent from the same domain (
Google specifies to use this record (“Create SPF records”):
v=spf1 include:_spf.google.com ~all
The other provider specifies:
v=spf1 include:spf.provider.com ?all
I created the following TXT record (ip4 value changed):
v=spf1 ip4:127.0.0.1 include:_spf.google.com include:spf.provider.com ?all
I have tested this by sending mails via both providers to a Googlemail address and it passes.
However the [email protected] service of port25.com reports (again hostnames/IPs changed):
Result: permerror (multiple SPF records) ID(s) verified: [email protected] DNS record(s): example.com. SPF (no records) example.com. 3600 IN TXT "v=spf1 ip4:127.0.0.1 include:_spf.google.com include:spf.provider.com ?all" example.com. 3600 IN TXT "google-site-verification=$hash$" _spf.google.com. SPF (no records) _spf.google.com. 300 IN TXT "v=spf1 ip4:220.127.116.11/19 ip4:18.104.22.168/19 ip4:22.214.171.124/20 ip4:126.96.36.199/18 ip4:188.8.131.52/17 ip4:184.108.40.206/20 ip4:220.127.116.11/16 ip4:18.104.22.168/20 ip4:22.214.171.124/20 ip4:126.96.36.199/16 ?all" spf.provider.com. SPF (no records) spf.provider.com. 3600 IN TXT "v=spf1 ip4:127.0.0.2 ~all" spf.provider.com. 3600 IN TXT "v=spf1 ip4:127.0.0.2 ~all"
Is this verifier correct with its conclusion?
It’s hard to be sure, since you obscured the relevant details, but it appears that one of your providers has two SPF records in their DNS, which is not allowed.
You can validate your SPF records with the SPF Parser tool.
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.