Marco Balmer wrote: > Hi Bernd > > Am Mi, 20.06.2007, 07:40, schrieb Bernd Wurst: >> "v=spf1 mx >> mx:exchange.comparis.ch ip4:194.209.79.216 ....." >> ^^^^^^^^^^ >> >> courieresmtpd: >> error,relay=::ffff:194.209.79.216 > > Ah now I understand. > > Then the SPF record should be "v=spf1 mx mx:comparis.ch....." ?
"mx" and "mx:comparis.ch" are equivalent, and thus redundant, if the domain being evaluated is comparis.ch. If you want to authorize mail from exchange.comparis.ch, "a:exchange.comparis.ch" sets that. Since mx:comparis.ch has an A record, it can be used as a mail domain anyway, thus it may be a good idea to add an SPF record to it as well. > But why did courier not accept it anyway, because ip4 > address in the spf record is matching the incoming > connection in my case? Is mx prefered? Setting many references to further DNS records has been feared as a way to put DoS attacks to a server. I think that's why the server is required to throw an exception on DNS failures/timeouts. ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
