SPF Record

    Mimecast's DMARC solution is a quick and easy-to-implement email validation method that builds out the SPF and DKIM protocols.

    Free SPF Record Check

    Check My Domain

    Improving the SPF record with DMARC

    Sender Policy Framework (SPF) is an email authentication method that helps to stop spam, spoofing and email attacks. Using the SPF email protocol, organizations can publish an SPF record in the domain's DNS that identifies the mail servers authorized to send email for the domain. With this information, ISPs and receiving mail servers can perform an SPF test, checking the SPF record to see whether an email is sent from an authorized server.

    While using the information in an SPF record can block some threats, it does nothing to stop email where only the "from" address is spoofed. Also, an SPF check won't work on a forwarded email. And for SPF to be effective, an organization must keep its SPF record constantly updated – a task which can be difficult over time as organizations change ISP providers.

    Domain-based Message Authentication, Reporting & Conformance, or DMARC, is an email validation method that builds on the SPF and DKIM protocols. An email must pass SPF and/or DKIM authentication, and the information in the "from" address must align with other information known about the sender from the SPF record or DKIM signature. Most helpfully, DMARC also outlines how messages that fail to authenticate should be processed.

    Despite the many benefits of the DMARC protocol, it can be challenging for organizations to implement and manage this powerful authentication technique. That's where Mimecast can help.

    Improving the SPF record with DMARC

    Comprehensive technology for email security

    DMARC Analyzer is part of Mimecast's all-in-one solution for email security that also includes:

    • Mimecast Email Security with Targeted Threat Protection. Mimecast offers a set of cloud services that defend against sophisticated threats like spear-phishing and zero-day attacks as well as malicious links and attachments in emails, emails using domain similarity and email attacks that are generated by or spread internally.
    • Mimecast Awareness Training. Mimecast's highly engaging and effective awareness training programs help to mitigate the kinds of human error that are involved in more than 90% of all security breaches.
    • Mimecast Information Protection. Mimecast offers services that scan email for potential data leaks, as well as solutions that enable employees to send encrypted email and to securely and easily share large files that would otherwise exceed mailbox limitations.
    • Mimecast Brand Exploit Protect. Mimecast prevents attackers from cloning your brand or using domains that are similar to yours to trick employees, customers and partners into revealing credentials, sharing sensitive information or transferring money to fraudulent accounts.
    • Mimecast Web Security. Mimecast protects employees and guests Wi-Fi users against malicious and inappropriate websites with a service that adds monitoring and security to the DNS layer.
    Comprehensive technology for email security

    Geïnteresseerd in meer informatie?

    Plan een demo

    Self-service tools. User-friendly reports. Managed service options.

    Key features of DMARC analyzer include:

    • Self-service email intelligence tools to move to an enforced DMARC policy as fast as possible.
    • User-friendly alerts, reports and charts that help to deploy DMARC and monitor ongoing performance.
    • Forensic reports that enable administrators to identify and track down malicious email sources.
    • A setup wizard to create DMARC records.
    • Daily and weekly summary reports for tracking progress.
    • Tools to check DNS changes and to receive proactive prompts when a record is altered.
    • DMARC/DKIM/SPF record checkers for quick and easy validation of records.
    • Unlimited users, domains and domain groups.
    • Two-factor authentication for tighter security.
    • Managed services provided by Mimecast specialists that help to minimize risk and that offer the fastest path to DMARC enforcement.
    Self-service tools. User-friendly reports. Managed service options.

    Comprehensive technology for email security

    DMARC Analyzer is part of Mimecast's all-in-one solution for email security that also includes:

    • Mimecast Email Security with Targeted Threat Protection. Mimecast offers a set of cloud services that defend against sophisticated threats like spear-phishing and zero-day attacks as well as malicious links and attachments in emails, emails using domain similarity and email attacks that are generated by or spread internally.
    • Mimecast Awareness Training. Mimecast's highly engaging and effective awareness training programs help to mitigate the kinds of human error that are involved in more than 90% of all security breaches.
    • Mimecast Information Protection. Mimecast offers services that scan email for potential data leaks, as well as solutions that enable employees to send encrypted email and to securely and easily share large files that would otherwise exceed mailbox limitations.
    • Mimecast Brand Exploit Protect. Mimecast prevents attackers from cloning your brand or using domains that are similar to yours to trick employees, customers and partners into revealing credentials, sharing sensitive information or transferring money to fraudulent accounts.
    • Mimecast Web Security. Mimecast protects employees and guests Wi-Fi users against malicious and inappropriate websites with a service that adds monitoring and security to the DNS layer.
    Comprehensive technology for email security

    FAQs: What is an SPF record?

    What is SPF?

    Sender Policy Framework (SPF) is an email authentication protocol that is designed to identify any email that uses a forged sender address. SPF allows the owner of a domain to specify in the DNS record which IP addresses can send mail for the domain.

    What is an SPF record?

    An SPF record is a line of text published in the DNS that contains the list of authorized IP addresses from which email can be sent for the domain. When a mail server receives a message, it can check the IP address in the email header to see if it matches the address in the SPF record. If there is no match, the email does not pass the SPF test.

    What is an SPF record check?

    An SPF record check is a diagnostic test that looks up the SPF record for a domain, displays the record and runs a variety of tests to uncover any errors in the record that could create problems for email delivery. Mimecast DMARC analyzer offers a free SPF record check along with a free DKIM record check and a free DMARC record check.

    FAQs: What is an SPF record?

    Expert Security Insights

    Additional security resources you may be interested in: