Sender Policy Framework

Most domains send outbound mail through a relatively small number of servers. Domains should describe that set of servers in an SPF record in their DNS. Internet email receivers can then reject forged messages which don't come from an envelope sender domain's approved servers. This wizard helps domain owners identify all the servers which could be expected to send mail from their domain.

microsoft.com's IP address is 20.112.250.133 (20.112.250.133).
Does that server send mail from microsoft.com? 		[a]
This wizard found 1 name for the MX servers for microsoft.com: microsoft-com.mail.protection.outlook.com.
MX servers receive mail for microsoft.com.
Do they also send mail from microsoft.com? 		[mx]
Do you want to just approve any host
whose name ends in microsoft.com? (Expensive, unreliable and not recommended) 		[ptr]

Do any other servers send mail from microsoft.com?

You can describe them by giving "arguments" to the a:, mx:, ip4:, and ptr: mechanisms. mx: takes domain names and approves all the MX servers of these domains. To keep the wizard short we left out ptr:, but it works analogously.

 [a:]
[mx:]

IP networks can be entered using CIDR notation, eg. 192.0.2.0/24		 [ip4:]
Could mail from microsoft.com originate through
servers belonging to some other domain?
If you send mail through your ISP's servers, and the ISP has published an SPF record, name the ISP here. 		[include:]
Do the above lines describe all the hosts that send mail from microsoft.com? [~all]

Check SPF records for another domain


the microsoft has you