SPF (Sender Policy Framework) is an email authentication method that allows domain owners to specify which mail servers are authorized to send emails on behalf of their domain. This helps reduce the risk of spoofing and ensures legitimate emails are correctly delivered.
This guide provides step-by-step instructions for setting up SPF with Mimecast, a cloud-based email security and management provider.
Mimecast has multiple SPF record includes for the many different regions where they have data centres housing your Mimecast instance.
Please add the relevant includes for the region of your Mimecast instance.
| Europe | eu._netblocks.mimecast.com |
| United States | us._netblocks.mimecast.com |
| South Africa | za._netblocks.mimecast.com |
| Germany | de._netblocks.mimecast.com |
| Australia | au._netblocks.mimecast.com |
Global Includes
This is not recommended as it will add the SPF includes for every Mimecast Region which adds a total of 5 lookups to your SPF record.
| Global | _netblocks.mimecast.com |
Note: If you’re already using Sendmarc for SPF management, simply copy your regions’ include and follow the steps here.
To authorize Mimecast to send emails on your domain’s behalf:
Example of an updated SPF record:
| Host | Type | Value |
|---|---|---|
| @ or blank | TXT | v=spf1 include:another.net include:za._netblocks.mimecast.com ~all |
Example of a new SPF record:
| Host | Type | Value |
|---|---|---|
| @ or blank | TXT | v=spf1 include:za._netblocks.mimecast.com ~all |
Allow up to 48 hours for DNS propagation, depending on your DNS host.
For a complete walkthrough of updating SPF records using Sendmarc, see our documentation here.
For more information on SPF setup, visit Mimecast’s official guide here.
Find out how to configure your Mimecast DKIM Settings here.