SPF Check:
_spfik1.mail.schwarz

1. Specify domain name

Enter a domain to be checked for the SPF record
2. Specify IP address (optional)
Enter any IP address to check if it is authorized to send e-mails by the SPF record

What is the SPF lookup for?

With the SPF lookup you analyze the SPF record of a domain for errors, security risks and authorized IP addresses. Optionally, you can specify an IP address to check if it is authorized to send e-mail on behalf of the domain. The SPF lookup analyzes registered TXT records in real time. If you want to specify an SPF record manually, use the SPF Analyzer.

Loading...

SPF check passed

Your SPF record check result
  •   SPF record found
  •   Syntax check: 0 errors
  •   Email Anti-Spoofing: Good
Warning: Compliance breach for email deliverability & security

The domain _spfik1.mail.schwarz does not fulfil the requirements for optimal deliverability to Google, Yahoo and other email service providers.

Mandatory IT baseline protection measures for email security are not fulfilled. There are risks of email misuse.

Summary of the SPF check

Does a valid SPF record exist?
An SPF record was found for the domain _spfik1.mail.schwarz.
The SPF record for _spfik1.mail.schwarz is valid.
The syntax check of the SPF record shows no obvious errors.

Which IP-s are legitimate to send emails?
The SPF record contains a reference to external rules, which means that the validity of the SPF record depends on at least one other domain. A detailed list of the rules used externally can be found in the analysis result. In total, 116 IP address(es) were authorized by the SPF record to send emails.

The SPF record analysis was performed on 29.12.2024 at 00:16:55 clock.

Lookup for the domain:
_spfik1.mail.schwarz
IP address to be checked:
no IP address specified
Solve your problems in no time
Guaranteed measurable improvement for email deliverability and domain security
Solve your problems in no time

Evaluation for the domain _spfik1.mail.schwarz 

Nameserverset:
ns3.eurodns.com
ns2.eurodns.com
ns4.eurodns.com
ns1.eurodns.com
Determined SPF record:
Legitimated IP addresses:
IP Provider / ASN DNSBL-Check
40.92.0.0/15
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
40.107.0.0/16
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
52.100.0.0/15
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
52.102.0.0/16
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
52.103.0.0/17
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
104.47.0.0/17
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
2a01:111:f400::/48
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
2a01:111:f403::/49
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
2a01:111:f403:8000::/51
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
2a01:111:f403:c000::/51
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
2a01:111:f403:f000::/52
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
185.124.192.32/28
INTAC Services GmbH blacklist 
185.124.192.48/28
INTAC Services GmbH blacklist 
89.202.107.134 Equinix (EMEA) Acquisition Enterprises B.V. blacklist 
89.202.107.198 Equinix (EMEA) Acquisition Enterprises B.V. blacklist 
199.91.139.22 SNC blacklist 
148.139.0.2 SNC blacklist 
37.98.234.2 SNC blacklist 
148.139.143.20 SNC blacklist 
37.98.232.2 - blacklist 
199.91.139.23 SNC blacklist 
148.139.2.2 SNC blacklist 
199.91.141.23 SNC blacklist 
199.91.137.26 - blacklist 
148.139.142.20 SNC blacklist 
199.91.141.24 SNC blacklist 
199.91.141.145 SNC blacklist 
148.139.3.2 SNC blacklist 
148.139.1.2 SNC blacklist 
199.91.140.26 SNC blacklist 
148.139.142.17 SNC blacklist 
199.91.137.2 - blacklist 
199.91.141.22 SNC blacklist 
148.139.143.18 SNC blacklist 
148.139.143.19 SNC blacklist 
149.96.13.2 SNC blacklist 
149.96.14.2 SNC blacklist 
37.98.232.26 - blacklist 
199.91.139.145 SNC blacklist 
199.91.136.28 SNC blacklist 
37.98.232.12 - blacklist 
37.98.235.2 SNC blacklist 
199.91.139.24 SNC blacklist 
148.139.1.31 SNC blacklist 
148.139.0.31 SNC blacklist 
199.91.136.26 SNC blacklist 
199.91.140.28 SNC blacklist 
148.139.142.18 SNC blacklist 
148.139.143.17 SNC blacklist 
148.139.142.19 SNC blacklist 
62.153.207.234 Deutsche Telekom AG blacklist 
188.95.96.0/24
Equinix (EMEA) Acquisition Enterprises B.V. blacklist 
51.105.221.65 MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
20.36.220.122 MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
213.52.186.0/24
Equinix (EMEA) Acquisition Enterprises B.V. blacklist 
122.200.133.179 Rackspace IT Hosting AS IT Hosting Provider Hong Kong blacklist 
122.200.133.180 Rackspace IT Hosting AS IT Hosting Provider Hong Kong blacklist 
89.45.227.221 Cleura AB blacklist 
46.254.11.92 Cleura AB blacklist 
89.45.227.195 Cleura AB blacklist 
86.107.243.139 Cleura AB blacklist 
185.86.190.128/28
INTAC Services GmbH blacklist 
185.124.192.43 INTAC Services GmbH blacklist 
185.124.192.44 INTAC Services GmbH blacklist 
198.2.128.0/24
THEROCKETSCIENCEGROUP blacklist 
198.2.132.0/22
THEROCKETSCIENCEGROUP blacklist 
198.2.136.0/23
THEROCKETSCIENCEGROUP blacklist 
198.2.145.0/24
THEROCKETSCIENCEGROUP blacklist 
198.2.186.0/23
THEROCKETSCIENCEGROUP blacklist 
205.201.131.128/25
THEROCKETSCIENCEGROUP blacklist 
205.201.134.128/25
THEROCKETSCIENCEGROUP blacklist 
205.201.136.0/23
THEROCKETSCIENCEGROUP blacklist 
205.201.139.0/24
THEROCKETSCIENCEGROUP blacklist 
198.2.177.0/24
THEROCKETSCIENCEGROUP blacklist 
198.2.178.0/23
THEROCKETSCIENCEGROUP blacklist 
198.2.180.0/24
THEROCKETSCIENCEGROUP blacklist 
104.40.229.156 MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
52.169.0.179 MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
20.50.220.144/28
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
40.127.253.48/28
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
2001:a60:0:1002:5054:ff:fedf:6c4/128
M-net Telekommunikations GmbH blacklist 
130.214.193.64/26
SAP SE blacklist 
130.214.156.192/26
SAP SE blacklist 
34.107.8.58 GOOGLE-CLOUD-PLATFORM blacklist 
51.116.118.125 MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
78.31.119.0/27
Fundaments B.V. blacklist 
78.31.119.114 Fundaments B.V. blacklist 
2001:7b8:634:4400::16 BIT BV blacklist 
2001:7b8:634:4400::12 BIT BV blacklist 
20.203.210.29 MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
4.184.180.20 MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
4.184.187.191 MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
193.148.170.201 INTAC Services GmbH blacklist 
193.148.175.121 INTAC Services GmbH blacklist 
193.201.168.38 dpa Deutsche Presse-Agentur GmbH blacklist 
193.201.168.170/31
dpa Deutsche Presse-Agentur GmbH blacklist 
62.116.177.96/28
InterNetX GmbH blacklist 
92.79.87.0/24
Vodafone GmbH blacklist 
212.185.43.208/28
Deutsche Telekom AG blacklist 
93.191.162.0/24
Bringe Informationstechnik GmbH blacklist 
93.191.164.0/24
Bringe Informationstechnik GmbH blacklist 
213.30.253.0/25
1&1 Versatel Deutschland GmbH blacklist 
178.77.90.224/28
PlusServer GmbH blacklist 
155.56.208.0/20
SAP SE blacklist 
62.245.181.250/32
M-net Telekommunikations GmbH blacklist 
212.114.242.106/32
M-net Telekommunikations GmbH blacklist 
212.18.5.37/32
M-net Telekommunikations GmbH blacklist 
62.245.150.155/32
M-net Telekommunikations GmbH blacklist 
212.18.0.0/28
M-net Telekommunikations GmbH blacklist 
213.198.51.53/32
NTT-LTD-2914 blacklist 
88.99.239.232 Hetzner Online GmbH blacklist 
95.217.5.74 Hetzner Online GmbH blacklist 
212.34.64.185 Finanz Informatik Technologie Service GmbH & Co. KG blacklist 
20.40.137.112/28
MICROSOFT-CORP-MSN-AS-BLOCK blacklist 
2001:a60:0:1804:5054:ff:fef8:1983/128
M-net Telekommunikations GmbH blacklist 
35.242.247.107 GOOGLE-CLOUD-PLATFORM blacklist 
SPF-Syntax Check:
Analysis result of the SPF record for the domain: _spfik1.mail.schwarz

SPF record available?

We found an SPF record for the domain.

v=spf1

Additionally authorized A-records?

In addition to the A-records stored in the DNS, we were able to find further records authorized in the SPF-record

199.91.139.22
148.139.0.2
37.98.234.2
148.139.143.20
37.98.232.2
199.91.139.23
148.139.2.2
199.91.141.23
199.91.137.26
148.139.142.20
199.91.141.24
199.91.141.145
148.139.3.2
148.139.1.2
199.91.140.26
148.139.142.17
199.91.137.2
199.91.141.22
148.139.143.18
148.139.143.19
149.96.13.2
149.96.14.2
37.98.232.26
199.91.139.145
199.91.136.28
37.98.232.12
37.98.235.2
199.91.139.24
148.139.1.31
148.139.0.31
199.91.136.26
199.91.140.28
148.139.142.18
148.139.143.17
148.139.142.19

Additionally authorized IPv4 addresses

Explicit IPv4 addresses in the SPF record have been authorized to send

185.124.192.32/28
185.124.192.48/28
89.202.107.134
89.202.107.198
62.153.207.234
188.95.96.0/24
51.105.221.65
20.36.220.122
213.52.186.0/24
122.200.133.179
122.200.133.180
89.45.227.221
46.254.11.92
89.45.227.195
86.107.243.139
35.242.247.107

Additionally authorized IPv6 addresses

Explicit IPv6 addresses in the SPF record have been authorized to send

2001:a60:0:1804:5054:ff:fef8:1983/128

Additional external SPF records

We could find other records authorized in the SPF record

include:spf.protection.outlook.com
v=spf1 ip4:40.92.0.0/15 ip4:40.107.0.0/16 ip4:52.100.0.0/15 ip4:52.102.0.0/16 ip4:52.103.0.0/17 ip4:104.47.0.0/17 ip6:2a01:111:f400::/48 ip6:2a01:111:f403::/49 ip6:2a01:111:f403:8000::/51 ip6:2a01:111:f403:c000::/51 ip6:2a01:111:f403:f000::/52 -all
ipv4:
40.92.0.0/15
ipv4:
40.107.0.0/16
ipv4:
52.100.0.0/15
ipv4:
52.102.0.0/16
ipv4:
52.103.0.0/17
ipv4:
104.47.0.0/17
ipv6:
2a01:111:f400::/48
ipv6:
2a01:111:f403::/49
ipv6:
2a01:111:f403:8000::/51
ipv6:
2a01:111:f403:c000::/51
ipv6:
2a01:111:f403:f000::/52
include:_spfik2.mail.schwarz
v=spf1 include:_spfik3.mail.schwarz ip4:62.116.177.96/28 ip4:92.79.87.0/24 include:_spf.salesforce.com ip4:212.185.43.208/28 ip4:93.191.162.0/24 ip4:93.191.164.0/24 ip4:213.30.253.0/25 ip4:178.77.90.224/28 ip4:155.56.208.0/20 ip4:62.245.181.250/32 ip4:212.114.242.106/32 ip4:212.18.5.37/32 ip4:62.245.150.155/32 ip4:212.18.0.0/28 ip4:213.198.51.53/32 ip4:88.99.239.232 ip4:95.217.5.74 ip4:212.34.64.185 ip4:20.40.137.112/28 -all
ipv4:
62.116.177.96/28
ipv4:
92.79.87.0/24
ipv4:
212.185.43.208/28
ipv4:
93.191.162.0/24
ipv4:
93.191.164.0/24
ipv4:
213.30.253.0/25
ipv4:
178.77.90.224/28
ipv4:
155.56.208.0/20
ipv4:
62.245.181.250/32
ipv4:
212.114.242.106/32
ipv4:
212.18.5.37/32
ipv4:
62.245.150.155/32
ipv4:
212.18.0.0/28
ipv4:
213.198.51.53/32
ipv4:
88.99.239.232
ipv4:
95.217.5.74
ipv4:
212.34.64.185
ipv4:
20.40.137.112/28
include:_spfik3.mail.schwarz
v=spf1 ip4:185.86.190.128/28 ip4:185.124.192.43 ip4:185.124.192.44 include:spf.mandrillapp.com ip4:104.40.229.156 ip4:52.169.0.179 ip4:20.50.220.144/28 ip4:40.127.253.48/28 ip6:2001:a60:0:1002:5054:ff:fedf:6c4/128 ip4:130.214.193.64/26 ip4:130.214.156.192/26 ip4:34.107.8.58 ip4:51.116.118.125 ip4:78.31.119.0/27 ip4:78.31.119.114 ip6:2001:7b8:634:4400::16 ip6:2001:7b8:634:4400::12 ip4:20.203.210.29 ip4:4.184.180.20 ip4:4.184.187.191 ip4:193.148.170.201 ip4:193.148.175.121 ip4:193.201.168.38 ip4:193.201.168.170/31 -all
ipv4:
185.86.190.128/28
ipv4:
185.124.192.43
ipv4:
185.124.192.44
ipv4:
104.40.229.156
ipv4:
52.169.0.179
ipv4:
20.50.220.144/28
ipv4:
40.127.253.48/28
ipv4:
130.214.193.64/26
ipv4:
130.214.156.192/26
ipv4:
34.107.8.58
ipv4:
51.116.118.125
ipv4:
78.31.119.0/27
ipv4:
78.31.119.114
ipv4:
20.203.210.29
ipv4:
4.184.180.20
ipv4:
4.184.187.191
ipv4:
193.148.170.201
ipv4:
193.148.175.121
ipv4:
193.201.168.38
ipv4:
193.201.168.170/31
ipv6:
2001:a60:0:1002:5054:ff:fedf:6c4/128
ipv6:
2001:7b8:634:4400::16
ipv6:
2001:7b8:634:4400::12
include:spf.mandrillapp.com
v=spf1 ip4:198.2.128.0/24 ip4:198.2.132.0/22 ip4:198.2.136.0/23 ip4:198.2.145.0/24 ip4:198.2.186.0/23 ip4:205.201.131.128/25 ip4:205.201.134.128/25 ip4:205.201.136.0/23 ip4:205.201.139.0/24 ip4:198.2.177.0/24 ip4:198.2.178.0/23 ip4:198.2.180.0/24 ~all
ipv4:
198.2.128.0/24
ipv4:
198.2.132.0/22
ipv4:
198.2.136.0/23
ipv4:
198.2.145.0/24
ipv4:
198.2.186.0/23
ipv4:
205.201.131.128/25
ipv4:
205.201.134.128/25
ipv4:
205.201.136.0/23
ipv4:
205.201.139.0/24
ipv4:
198.2.177.0/24
ipv4:
198.2.178.0/23
ipv4:
198.2.180.0/24
unknown:
include:_spf.salesforce.com
v=spf1 exists:%{i}._spf.mta.salesforce.com -all

E-Mail handling

How should the checkHost() function of the e-mail server handle the e-mail? (syntax )

-all
Fail (non-compliant e-mails are rejected)

Will be forwarded to another SPF record?

There is no reference to any other SPF record

Are the server addresses allowed to send e-mails?

In the SPF entry the mechanism 'a' has not been set.

Are the registered mail servers allowed to send e-mails?

In the SPF entry the mechanism 'mx' has not been set

Additionally authorized MX records

We could not find any other records authorized in the SPF record besides the MX records stored in the DNS

How is the sender informed?

The exp mechanism acts as a return to the sender if the IP address was not authorized to send and notify them. None was found.

PTR (obsolete mechanism)

The ptr mechanism is deprecated, slow and insecure and should not be used

PTR:

The ptr mechanism is deprecated, slow and insecure and should not be used

Authorize IP addresses with markers

When SPF is evaluated, macros can specifically authorize Ip addresses based on the request or connection of the user or client (RFC7208 )

Receiver address

analysis.ra-missing

Amount of reports

analysis.rp-missing

Report selection

analysis.rr-missing

Unknown mechanisms

No unknown mechanisms were found in the SPF record.

Recently performed SPF lookups

Server IP Address

We have determined the following IP address for the domain:

No domain specified

Reverse address

We have determined the following name for the server IP address:

No PTR record found

Free whitepaper

How secure is your domain?

  • Practical with many examples
  • the basics of domain risk management summarized in 20 pages
  • Checklist with 53 questions on 14 risk areas

Get a first impression of the risk potential in your company

⮩ Download "Domain Risk Management" for free
All offers are aimed at traders, not end consumers and do not include VAT.
© 2024 nicmanager.com.   All rights reserved.
nicmanager