SPF Records for USAePay
Problem: Receipts Sent to SPAM/Junk Folder
This page aims to provide assistance to merchants who are having trouble with customer receipts being blocked as spam. The most common cause of this issue is the ability for merchants to change the Email From address that is used by the gateway when sending emails. By default, receipts are sent with a from address of “email@example.com”. Since usaepay.com designates its own servers as being allowed to send “@usaepay.com” email, these messages are not blocked. Once the merchant changes the from address on the settings screen in the console, the receipts are sent with the merchants email, for example: firstname.lastname@example.org. When the customer's mail server receives the email, it checks that “adams.com” allows usaepay.com to send email on behalf of email@example.com. If they do not, the message may be tagged as spam. Whether the message is blocked or not depends on whether adams.com has configured a “SPF” dns record and whether that record lists USAePay.
What is SPF?
Sender Policy Framework (SPF) is an open standard that allows mail servers to verify that an email was sent by a source that has been permitted by the owner of the domain. Configuring SPF for your domain is a matter of adding a TXT record to your DNS. If you are not sure how to modify the DNS for your domain, consult your domain provider.
If a merchant is going to list their own email in the Email From setting, they will need to add usaepay to their SPF record. If the merchant does not control their domain and the domain owner is not willing to make the change, the merchant should either use a different email address or leave the from address blank.
The easiest way to list the usaepay mail servers is to add
include:spf.usaepay.com somewhere before the
-all. For example, if your SPF record is currently:
acme.org TXT "v=spf1 a mx ~all"
you would change it to:
acme.org TXT "v=spf1 a mx include:spf.usaepay.com ~all"
If you prefer not to use our include, you can also list the mail server IPs directly. This approach is not recommended as your record will be out of date when our network expands/changes.
acme.org TXT "v=spf1 a mx ip4:18.104.22.168 ip4:22.214.171.124 ip4:126.96.36.199 ip4:188.8.131.52 ip4:184.108.40.206 ~all""
How to Test
Once you have your rules setup correctly in DNS, there are a variety of web based tools that you can use to verify. For example, to test with the Kitterman SPF Validation test tool, enter
220.127.116.11 in the Sending IP Address field, the Email From address you are using in the console should go in the Sender Email Address field, and
andmx-ca4-01.usaepay.com should go in the Senders Computer Name field. If all is configured correctly, you should see a Pass and Sender Permitted.
Using a Webmail Based Email Address
USAePay does not recommend using a public webmail based address (@google.com, @hotmail.com, etc.) in the Email From setting. There is no way to correctly configure these email addresses to be sent from the USAePay gateway and merchants will experience a number of customers who are not able to to receive receipts. The merchant should either leave the "From" setting blank or get their own domain for email.