Gmail ignoring SPF record

spf

Solution 1:

The behavior on SPF mismatch is entirely up to the receiving end, and considering how frequently SPF is configured incorrectly (or out of date) a lot of providers won't reject based on a mismatch (even with -all instead of ~all). It is common to see the spam score bumped because of a mismatch, and maybe even a match receiving a spam score decrease, but even these aren't always the case either. While the behavior of the receiving end may not always be reliable, it's definitely worth having there in case the receiving end does respect SPF in some way.

Solution 2:

To the original question: Gmail is DMARC compliant, and so if you want to enforce policy, you should publish a DMARC record with p=reject or p=quarantine and Gmail will then apply your policy when SPF and DKIM fail.

Related

Can't enable mpm_prefork with Apache 2.4 on Ubuntu 14.04
Copying SSH IDs between servers
What's the difference between EIP and public IP in AWS?
Is there any way to restrict user from changing file extensions in Windows XP, Vista, Windows 7?
Is it valid to have several IP addresses resolving back (PTR) to one name that doesn't match either of the relevant A records?
log format ignored for frontend 'http-in' since it has no log address
Setting timezone to UTC in unattended install
What does having * * * mean in the command traceroute ? and How can you cope with that situation?
Windows PowerShell - How to view commands history date/time
Receiving DMARC reports for emails I do not send
On windows 10, how do I setup a VPN client so that all users can use it (i.e. available before login)
How to resolve "The server you are trying to access is using an authentication protocol not supported by this version of Office"?