SPF (Sender Policy Framework) is an email authentication protocol that helps prevent unauthorized senders from sending emails on behalf of your domain. By validating which mail servers are allowed to send on your behalf, SPF helps protect against spoofing and phishing attacks.
This guide explains how to set up SPF for Proofpoint Essentials, an email security solution that filters and protects your organization’s inbound and outbound messages.
Important: To authorize Proofpoint to send emails on your behalf, you will have to include it in your SPF record.Please get your region code for your ProofPoint Instance from your ProofPoint Setup Guide for domain onboarding.
Note: If you’re already using Sendmarc for SPF management, simply copy your region code, (e.g. “include:_spf-us.ppe-hosted.com ~all” for the US) and follow the steps here. If you’re unsure of your region code, check the Setup guide linked above.
To authorize Proofpoint to send emails on your domain’s behalf:
Example of an updated SPF record:
| Host | Type | Value |
|---|---|---|
| @ or blank | TXT | v=spf1 include:another.net include:[your region] ~all |
Example of a new SPF record:
| Host | Type | Value |
|---|---|---|
| @ or blank | TXT | v=spf1 include:[your region] ~all |
Allow up to 48 hours for DNS propagation, depending on your DNS host.
For detailed instructions on how to update your SPF record through Sendmarc, refer to the Sendmarc SPF Setup Documentation.
Refer to Proofpoint Essential’s official documentation for SPF setup here.
Find out how to configure your Proofpoint Essentials DKIM settings here.