How to setup SPF and TXT Records in AWS
An SPF record is a TXT record that is part of a domain’s DNS zone file. The TXT record specifies a list of authorized hostnames/IP addresses that mail can originate from for a given domain name. Kindly refer to the following similar guides: How to add a custom domain name to Azure Active Directory, and How to deploy WordPress on Azure App Service, and “how to add and verify a custom domain name to Azure Active Directory“.
Once this entry is placed within the DNS zone, no further configuration is necessary to take advantage of servers that incorporate SPF checking into their anti-spam systems. This SPF record is added the same way as a regular A, MX, or CNAME record.
When a server sends an e-mail from a domain techdirectarchive.de or techdirectarchive.com, the Internet Protocol (IP) needs an SPF record to get identified as a trusted sender.
Also, see Domain Name System Protocol: Client Registration Issue, how to fix “DNS Bad key 9017: The Cluster Name registration failed of one or more associated DNS names“, and Domain Name System: How to create a DNS record.
How to setup SPF and TXT Records in AWS
Sender Policy Framework (SPF) is a method of fighting spam. When a server sends an e-mail from a domain techdirectarchive.de or techdirectarchive.com, the Internet Protocol (IP) needs an SPF record to get identified as a trusted sender.Step-by-step guide for adding an SPF record
– Sign in to the AWS Management Console.
– Navigate to Route 53 dashboard at https://console.aws.amazon.com/route53/
– In the left navigation panel, under Dashboard,
– Click Hosted Zones. e.g. techdirectarchive.com
– Click on the domain name hosted zone that you want to update.
– On the DNS hosted zone page,
– create a new SPF record by completing the following actions
– Click Create Record Set button from the dashboard top menu.
– Leave the Name field empty.
From the Type dropdown list
– Select SPF – Sender Policy Framework.
In the Time To Leave (TTL) in seconds field,
– Enter a value of 3600 (1 hour) for Time to Live. In the Value text box,
– Enter the SPF value required, e.g. “v=spf1 include:_spf.google.com-all”.
v=spf1 include:_spf.google.com-allNote: If you do not use Google mail servers, replace include:_spf.google.com with the authorized mail server hostname/IP address e.g. “v=spf1 ip4:IPAddress/32-all”. From the Routing Policy dropdown list.
- Select Simple as the routing method for the SPF DNS record.
- Click Create to add the new SPF record to the DNS-hosted zone.
If you have multiple DNS hosted zone without SPF record sets (see the Audit section to determine which domains require SPF records).
Note: Adding an SPF record also requires a TXT record.
Step for adding a TXT record
Step for adding a TXT record
– Sign in to the AWS Management Console.
– Navigate to Route 53 dashboard at https://console.aws.amazon.com/route53/
– In the left navigation panel,
– Under Dashboard,
– Click Hosted Zones.
– Click on the hosted zone that you want to update (e. g. techdirectarchive.com).
– On the DNS hosted zone page,
– Create a new TXT record by completing the following actions
– Click Create Record Set button from the dashboard top menu.
– Leave the Name field empty.
– From the Type dropdown list
– Select TXT – text.
In the TTL (Seconds) field, Enter a value of 3600 (1 hour) for Time to Live.In the Value text box, enter the TXT value required, e.g. “v=spf1 mx ip4:IPAddress/32 a:spf.protecxxx.outlook.com a:spf.crsend.com -all”.
v=spf1 mx ip4:IPAddress/32 a:spf.protecxxx.outlook.com a:spf.crsend.com -allFrom the Routing Policy dropdown list, select Simple as the routing method for the TXT DNS record. Click Create to add the new TXT record to the DNS-hosted zone.
I hope you found this blog post on how to setup SPF and TXT Records in AWS helpful? Please let me know in the comment session if you have any questions.
