DNSai SPF Builder

Quick Start Guide (5 minutes)

1. Check your current record — Use the "Lookup Domain" tab above. Enter your domain (e.g., yourbusiness.com) to see if you already have an SPF record.
2. Build your SPF record — Click "Build SPF" and select your email provider(s). Don't know which one? See the guide below.
3. Copy your new record — Click the copy button next to your generated SPF record.
4. Add it to your DNS — Log into where you bought your domain (GoDaddy, Namecheap, Google Domains, etc.) and add a TXT record.
5. Verify it works — Wait 5-10 minutes, then use "Lookup Domain" again to confirm your record is live.

Which Email Provider Do I Use?

Not sure which email service to add? Here's how to tell:

• Google Workspace / Gmail
  You log into mail.google.com or Gmail app for your business email. Your email might end in @gmail.com or your custom domain through Google.
• Microsoft 365 / Outlook
  You log into outlook.com or use the Outlook app. Common if your business uses Microsoft Office products.
• Email Marketing Tools
  If you send newsletters or marketing emails, add those too: Mailchimp, SendGrid, Constant Contact, HubSpot, etc.
• Still not sure?
  Check your email settings or ask whoever set up your email. You can also look at a recent email you sent — the "from" address domain is what you need to protect.

Understanding the Builder Options

DNS Lookups: 0/10

SPF has a limit of 10 "lookups" (checking other servers). Each email provider you add uses 1 lookup. If you exceed 10, your SPF record will break. Most small businesses use 2-4 lookups.

Fail Policy: ~all vs -all

~all (Soft Fail) — Recommended for beginners. Emails from unauthorized servers get marked as suspicious but still delivered. Safer while you're getting set up.
-all (Hard Fail) — Strict mode. Emails from unauthorized servers are rejected entirely. Use this once you're confident your SPF is complete.

IP Addresses

Only needed if you have your own email server or a specific server that sends emails. Most small businesses using Gmail/Outlook don't need to add IPs.

A & MX Records

Advanced options. Check "mx" if your website hosting also sends emails. Most users can skip this section.

Where Do I Add My SPF Record?

After building your SPF record, you need to add it to your domain's DNS settings. This is usually where you bought your domain:

• GoDaddy: My Products → DNS → Add Record → TXT
• Namecheap: Domain List → Manage → Advanced DNS → Add New Record
• Google Domains: My Domains → DNS → Custom Records
• Cloudflare: Select Domain → DNS → Add Record
• Squarespace: Settings → Domains → DNS Settings

When adding the record:
• Type: TXT
• Host/Name: @ (or leave blank)
• Value: Paste your SPF record (starts with v=spf1)
• TTL: 3600 (or "1 hour" or leave as default)

SPF (Sender Policy Framework) records protect your domain from email spoofing by specifying which servers are allowed to send email on behalf of your domain. This tool helps you build SPF records correctly with a visual builder, validates syntax before you publish, and provides actionable recommendations based on best practices.

Lookup Domain Data at Scale

DNS Explorer — Run bulk DKIM, SPF, and DMARC lookups across thousands of domains. Built for security teams, MSPs, and IT administrators who need to audit email authentication configurations across their entire domain portfolio.

14-day full-feature trial