Skip to main content
Protect your domain reputation today
contact@simpledmarc.comSupport
SimpleDMARC

SPF Raw Checker & IP Range

Inspect your raw SPF record. View authorized IP addresses, includes, and mechanisms in a clear, flattened list.

Understanding Your SPF Record

Sender Policy Framework (SPF) is a DNS text record list of IP addresses that are authorized to send email on behalf of your domain. This tool performs a recursive lookup to find all authorized IPs.

Why Validate SPF Before Publishing?

A malformed SPF record can break email delivery the moment it goes live in DNS. Typos, incorrect CIDR notation, misplaced qualifiers, or invalid include targets all cause SPF evaluation failures at the receiving server. Since DNS changes propagate globally and some TTL values can cache records for hours, a bad SPF record can disrupt email delivery for an extended period before you notice and fix it. Our SPF Raw Checker eliminates this risk by letting you validate the record locally before touching DNS.

What the Raw Checker Analyzes

Paste your complete SPF string (starting with v=spf1) into the tool, and it parses every token against the SPF specification (RFC 7208). The checker verifies that each mechanism uses a valid qualifier (+, -, ~, ?), IP addresses and CIDR ranges are well-formed, include targets are syntactically valid domain names, the record begins with v=spf1, and the record ends with an appropriate 'all' mechanism. It also flags deprecated mechanisms like ptr, duplicate mechanisms, and structural issues like placing redirect alongside the all qualifier (redirect is ignored if all is present).

Ideal for Change Management

This tool is especially valuable during email infrastructure changes — migrating providers, onboarding new SaaS tools, or consolidating services after a merger. Instead of modifying your live DNS record and waiting for propagation to test, you can draft the new SPF string, validate it here, iterate until it is clean, and then publish the final version to DNS with confidence. It pairs perfectly with our DNS-based SPF Checker: use the Raw Checker to validate syntax before publishing, then the DNS Checker to confirm the live record resolves correctly after propagation.

Frequently Asked Questions

What is the SPF 10-lookup limit?
RFC 7208 limits SPF processing to 10 DNS lookups to prevent denial of service attacks. If you exceed this, your emails may fail authentication.
How does this tool help?
It counts your exact lookup usage and shows you the flattened list of every IP address authorized by your record.
What is SPF Flattening?
SPF Flattening is the process of resolving all hostnames to their IP addresses and replacing them in your record, reducing the lookup count to 1.
Does the raw checker resolve DNS lookups?
No. The raw checker validates syntax and structure only. It does not resolve include targets or count DNS lookups. Use our SPF Record Checker for a full DNS-resolved analysis.
Can I paste a record with quotes around it?
Yes. The tool strips surrounding quotes and whitespace automatically before parsing.
What if my record contains a redirect and an all mechanism?
The tool flags this as a warning. Per RFC 7208, if an 'all' mechanism is present, the redirect modifier is ignored entirely. Remove one or the other.
Can I validate SPF records for subdomains?
Yes. The syntax validation works for any SPF string regardless of which domain it is intended for.

More SPF Tools

SPF Record Checker

Perform a detailed lookup and validation of SPF records.

Try Tool

SPF Record Generator

Generate a valid SPF record for your authorized senders.

Try Tool

SimpleSPF

Hosted SPF flattening to fix 'too many lookups' errors.

Try Tool
View All Security Tools
SPF Raw Checker & Flattening Tool | SimpleDMARC