In the "authenticate a domain" screen of campaign monitor
Manage Client Name > Email Authentication Settings > Authenticate a new domain
I see the following as the verified "Sender ID" setting:
v=spf1 a mx include:cmail1.com ?all
Our actual setting, which we set up a long time ago is:
v=spf1 mx include:cmail1.com ~all
(there are two differences, the 'a' and the '~')
When I look at your help screens, here: https://secure.createsend.com/help/popup.aspx?t=100
All of the screenshots seem to show the setting that we are using, not the one that the interface displays.
Has the recommended setting changed?
That's a good question, Peter - I'll pass this on to our team and provide an answer for you as soon as I can. Sorry for not having a conclusive answer for you!
Hi again there, I just received the following response from our sysadmin:
We recently changed the qualifiers to better reflect spf usage, this also helped to minimise errors with domains that are using a number of providers.
"~all" will cause a SOFTFAIL on other IP addresses not listed with your SPF record (previous record).
"?all" will cause a NEUTRAL (No Policy) on other IP addresses not listed with your SPF record, which minamises mail being block if IP addresses are not listed.
the addtional "A" just means we also include your website IP address as a sender.
If you have any questions about this, I'd recommend contacting our team - then we'll be able to put you in touch with our sysadmins :)