You mean to "authorize" your own domain/s in your Bind/dns?
If, then you should have
yourdomain.tld. IN TXT "v=spf1 a mx ~all"
in your bind zone configuration file
v=spf1 tells it's a spf record
"a" tells that "yourdomain.tld" IP is allowed to send mail from yourdomain.tld
"mx" tells that the mx server IP of yourdomain.tld is allowed to send mail
"~all" tells that SPF queries that do not match any other mechanism will return “softfail”. Messages that are not sent from an approved server (the server with ip www.xxx.yyy.zzz = the ip of the mail server yourdomain.tld = "a". The server with ip aaa.bbb.ccc.ddd = the ip of the mx record of yourdomain.tld = "mx") should still be accepted but may be subjected to greater scrutiny...
So, if your dns record is like
yourdomain.tld. IN A aaa.bbb.ccc.ddd
mail.yourdomain.tld. IN A www.xxx.yyy.zzz
yourdomain.tld. IN MX 10 mail.yourdomain.tld.
the SPF tells that
if the mail is sent from aaa.bbb.ccc.ddd (the "a") that's ok
if the mail is sent from www.xxx.yyy.zzz (the "mx") that's ok
发布评论
评论(1)
您的意思是要在绑定/DNS中“授权”自己的域?
如果,那么您应该
在绑定区配置文件中
v = spf1告诉它是SPF记录
“ a”告诉“ yourdomain.tld” ip从yourdomain.tld
发送邮件
“ MX”告诉您YourDomain.tld的MX服务器IP发送邮件
“ 〜All”告诉不匹配任何其他机制的SPF查询将返回“ SoftFail”。消息未从批准的服务器发送(IP
因此,如果您的DNS记录就像
SPF告诉
You mean to "authorize" your own domain/s in your Bind/dns?
If, then you should have
in your bind zone configuration file
v=spf1 tells it's a spf record
"a" tells that "yourdomain.tld" IP is allowed to send mail from yourdomain.tld
"mx" tells that the mx server IP of yourdomain.tld is allowed to send mail
"~all" tells that SPF queries that do not match any other mechanism will return “softfail”. Messages that are not sent from an approved server (the server with ip www.xxx.yyy.zzz = the ip of the mail server yourdomain.tld = "a". The server with ip aaa.bbb.ccc.ddd = the ip of the mx record of yourdomain.tld = "mx") should still be accepted but may be subjected to greater scrutiny...
So, if your dns record is like
the SPF tells that