AWS/Azure/OpenShift

How to setup SPF and TXT Records in AWS

An SPF record is a TXT record that is part of a domain’s DNS zone file. The TXT record specifies a list of authorized hostnames/IP addresses that mail can originate from for a given domain name. Once this entry is placed within the DNS zone, no further configuration is necessary to take advantage of servers that incorporate SPF checking into their anti-spam systems. This SPF record is added the same way as a regular A, MX, or CNAME record. When a server sends an e-mail from a domain techdirectarchive.de or techdirectarchive.com, the Internet Protocol (IP) needs an SPF record to get identified as a trusted sender. Kindly refer to the following similar guides. What are the different types of DNS Records, and how to add a custom domain name to Azure Active Directory.

Sender Policy Framework (SPF) is a method of fighting spam. When a server sends an e-mail from a domain techdirectarchive.de or techdirectarchive.com, the Internet Protocol (IP) needs an SPF record to get identified as a trusted sender.

Step-by-step guide for adding an SPF record
– Sign in to the AWS Management Console.
– Navigate to Route 53 dashboard at https://console.aws.amazon.com/route53/
– In the left navigation panel, under Dashboard,

– Click Hosted Zones. e.g. techdirectarchive.com
– Click on the domain name hosted zone that you want to update.
– On the DNS hosted zone page,
– create a new SPF record by completing the following actions
– Click Create Record Set button from the dashboard top menu.
– Leave the Name field empty.

From the Type dropdown list
– Select SPF – Sender Policy Framework.
In the Time To Leave (TTL) in seconds field,
– Enter a value of 3600 (1 hour) for Time to Live. In the Value text box,
– Enter the SPF value required, e.g. “v=spf1 include:_spf.google.com-all”.

v=spf1 include:_spf.google.com-all

Note: If you do not use Google mail servers, replace include:_spf.google.com with the authorized mail server hostname/IP address e.g. “v=spf1 ip4:IPAddress/32-all”. From the Routing Policy dropdown list,
– Select Simple as the routing method for the SPF DNS record.
– Click Create to add the new SPF record to the DNS-hosted zone.

If you have multiple DNS hosted zone without SPF record sets (see the Audit section to determine which domains require SPF records). https://www.cloudconformity.com/conformity-rules/Route53/sender-policy-framework-record-present.html
– Note: Adding an SPF record also requires a TXT record.

Step for adding a TXT record
– Sign in to the AWS Management Console.
– Navigate to Route 53 dashboard at https://console.aws.amazon.com/route53/
– In the left navigation panel,
– Under Dashboard,
– Click Hosted Zones.
– Click on the hosted zone that you want to update (e. g. techdirectarchive.com).
– On the DNS hosted zone page,
– Create a new TXT record by completing the following actions
– Click Create Record Set button from the dashboard top menu.
– Leave the Name field empty.
– From the Type dropdown list
– Select TXT – text.

In the TTL (Seconds) field, Enter a value of 3600 (1 hour) for Time to Live.

In the Value text box, enter the TXT value required, e.g. “v=spf1 mx ip4:IPAddress/32 a:spf.protecxxx.outlook.com a:spf.crsend.com -all”.

v=spf1 mx ip4:IPAddress/32 a:spf.protecxxx.outlook.com a:spf.crsend.com -all

From the Routing Policy dropdown list, select Simple as the routing method for the TXT DNS record.
– Click Create to add the new TXT record to the DNS-hosted zone.

I hope you found this blog post helpful. If you have any questions, please let me know in the comment session.

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x