FREE TOOL
Create valid SPF records for your domain to protect against email spoofing and improve deliverability with our automated generator.
CONFIGURE RECORD
Add IPv4 or IPv6 addresses that are authorized to send email from your domain
Include SPF records from email services like Google Workspace, Mailchimp, etc.
Include your domain's A or MX records as authorized senders
Define how to handle emails from unauthorized servers
Messages from unauthorized servers will be marked as suspicious but not rejected
Validate and analyze existing SPF records.
Generate DKIM keys and DNS records.
Build comprehensive DMARC policies.
Complete domain deliverability analysis.
Verify all email authentication DNS records.
Advanced SPF record analysis and debugging.
Learn about SPF record components, best practices, and why automated generation helps prevent common configuration errors.
IP addresses (ip4: and ip6:)
Authorize specific IPv4 or IPv6 addresses to send email from your domain.
Include mechanisms (include:)
Reference other domains' SPF records, useful for third-party email services.
A and MX mechanisms
Authorize servers listed in your domain's A or MX DNS records.
Policy qualifier (all mechanism)
Defines how to handle emails from unauthorized sources: ~all (soft fail), -all (hard fail), or ?all (neutral).
Creating SPF records manually is error-prone and complex. Common mistakes include exceeding the 10 DNS lookup limit, using deprecated mechanisms, or incorrect syntax that breaks email authentication entirely.
Our generator automatically validates your configuration, ensures proper formatting, and follows SPF best practices. This prevents deliverability issues and protects your domain from spoofing attacks while maintaining compliance with email authentication standards.
InboxKit automatically generates and manages SPF records for all your domains
