Learn about Sender Policy Framework (SPF) and why you should add it to your DNS configuration. How to avoid email bouncing and IP blacklisting, how to test your SPF policy, and how add an SPF entry.
Anti-spam technology uses a tool called SPF. SPF allows permission to be granted to external servers to send email. This avoids somebody spoofing an email address to avoid disclosing the person's identity.
These days more mail servers are checking that merchants have granted Bambora permission to send email on their behalf. If they haven't, their customers may not be able to receive receipts or other email communications sent by Bambora. To add to this problem, many mail servers that do accept the mail, still score it as spam. Third-party anti-spam organizations aggregate this information, and if they see enough unapproved senders from one IP, they will add it to their blacklist, thinking the IP sending the email has been infected with malware and is part of a botnet to send out thousands of phishing emails or other scams via email. For more information on SPF, refer to the following: http://www.openspf.org/Introduction
To avoid having emails bounced and your Bambora IP blacklisted, merchants should add an entry known as a SPF record to their DNS (Domain Name Systems) configuration. This would typically be done by the person managing the mail or web servers, or by the hosting company. This record is in the form of a TXT record in your DNS configuration.
Microsoft has documentation on the best way to configure an SPF record for your own domain, including access to an SPF Wizard.
Additional information about SPF can be found on Wikipedia:
To see if you need to add an SPF entry, go to: http://www.openspf.org/Why?show-form=1&identity=&ip-address=bambora.com and enter the email address we are sending from on your behalf and click the Submit button.
On the results page you will see if an SPF policy has been published, if Bambora has been approved, and if it has, how it is handling email from an unauthorized sender.
As a merchant, if you do not have a DNS entry for SPF, you can add this TXT record:
v=spf1 a mx include:spf1.web.na.bambora.com ~all
This approves the sending of email from the merchant's domain and mailserver, and will also include Bambora's configuration to allow sending email from our servers. It will not specifically deny other IPs from sending email, but the message will be subject to further scrutiny.
Merchants who already have an SPF entry in their DNS record can add the following to their existing SPF policy: