OK.. I'm going to do my finest clueless newbie impression here in the
hope of clarifying some details.
phase.org should be "allowed" to send from its MX '(heifong.)phase.org'
(212.13.198.241), secondary server 'sentinel3.phase.org' (62.3.233.198),
and nildram's SMTP servers. Nildram don't (yet) support SPF.
phase.org has the SPF record:
phase.org. IN TXT "v=spf1 +a +mx include:nildram.net ~all"
Using spfquery from Mail-SPF-Query-1.9.1 and trying to guesstimate the
usage (am I failing to find some instructions here?), I type in:
ip=212.13.198.241 sender(_at_)À)«~`¿Þcµ?{ûL¨*ï helo=heifong.phase.org
This gives me an unknown. The full response follows - but should't the
+mx match the IP I'm giving it and give me an allow?
I've also tried it with a TXT record down to
phase.org. IN TXT "v=spf1 +mx ~all"
but that gets a softfail.
FULL OUTPUT from spfquery on the above input:
Mail::SPF::Query: ->new() requires a "helo" argument.
Mail::SPF::Query::new('Mail::SPF::Query','ipv4','ip=212.13.198.241','sender','sender(_at_)À)«~`¿Þcµ?{ûL¨*ï','debug',1,'fallbacks','ARRAY(0x8130e90)',...)
called at /usr/local/bin/spfquery line 90
eval {...} called at /usr/local/bin/spfquery line 90
| new: ipv4=ip=212.13.198.241, sender=sender(_at_)À)«~`¿Þcµ?{ûL¨*ï,
helo=
| sender=richard phase.org localpart is sender=richard
| sender=richard phase.org DirectiveSet->new(): doing TXT query
on phase.org
| sender=richard phase.org myquery: doing TXT query on phase.org
| sender=richard phase.org DirectiveSet->new(): SPF policy: +a
+mx include:nildram.net ~all
| sender=richard phase.org lookup: TXT +a +mx
include:nildram.net ~all
| sender=richard phase.org lookup: TXT prefix=+, lhs=a, rhs=
| sender=richard phase.org lookup: TXT prefix=+, lhs=mx, rhs=
| sender=richard phase.org lookup: TXT prefix=+, lhs=include,
rhs=nildram.net
| sender=richard phase.org lookup: TXT prefix=~, lhs=all, rhs=
| sender=richard phase.org lookup: mec mechanisms=+a() +mx()
+include(nildram.net) ~all()
| sender=richard phase.org evaluate_mechanism: +a() for
domain=phase.org
| sender=richard phase.org myquery: doing A query on phase.org
| sender=richard phase.org mechanism a: 212.13.198.241
| sender=richard phase.org evaluate_mechanism: +mx() for
domain=phase.org
| sender=richard phase.org myquery: doing MX query on phase.org
| sender=richard phase.org myquery: doing A query on phase.org
| sender=richard phase.org evaluate_mechanism:
+include(nildram.net) for domain=phase.org
| sender=richard phase.org mechanism include: recursing into
nildram.net
| sender=richard phase.org clone: new object:
|| sender=richard nildram.net clone: parent =
Mail::SPF::Query=HASH(0x8362c80)
|| sender=richard nildram.net clone: ipv4 =
ip=212.13.198.241
|| sender=richard nildram.net clone: directive_set =
DirectiveSet=HASH(0x83f7518)
|| sender=richard nildram.net clone: depth = 1
|| sender=richard nildram.net clone: helo =
|| sender=richard nildram.net clone: res =
Net::DNS::Resolver=HASH(0x8132a5c)
|| sender=richard nildram.net clone: domain =
nildram.net
|| sender=richard nildram.net clone: sender =
sender(_at_)nJç[?xõ¾ç1ODÒz%=
|| sender=richard nildram.net clone: debug = 1
|| sender=richard nildram.net clone: fallbacks =
ARRAY(0x8130e90)
|| sender=richard nildram.net clone: localpart =
sender=richard
|| sender=richard nildram.net clone: loop_report =
ARRAY(0x8132978)
|| sender=richard nildram.net clone: Reversed_IP =
241.198.13.ip=212
|| sender=richard nildram.net clone: guess_mechs = a/24
mx/24 ptr exists:%{p}.wl.trusted-forwarder.org
exists:%{ir}.wl.trusted-forwarder.org
|| sender=richard nildram.net DirectiveSet->new(): doing TXT
query on nildram.net
|| sender=richard nildram.net myquery: doing TXT query on
nildram.net
|| sender=richard nildram.net DirectiveSet->new(): SPF policy:
|| sender=richard nildram.net no SPF record found for nildram.net
| sender=richard phase.org mechanism include: got back result
unknown / domain of sender sender(_at_)nJç[?xõ¾ç1ODÒz%= does not designate
mailers /
| sender=richard phase.org saving result UNKNOWN to cache point
and returning.
ip=212.13.198.241 sender(_at_)À)«~`¿Þcµ?{ûL¨*ï unknown domain
of sender sender(_at_)nJç[?xõ¾ç1ODÒz%= does not designate mailers
TIA,
Richard
-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.9.txt
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname(_at_)©#�«Mo\¯HÝÜîU;±¤Ö¤Íµø�?¡