SPF Error - ORF Forums

The following SPF Record caused IP adddres 17.158.233.229 to be blocked under SoftFail. Can anyone confirm the cause?

"v=spf1 ip4:17.0.0.0/8 ~all"

This is seems to be a regular issue for us so I really need to get to the bottom of the cause. The only thought I have is that when ORF first used SPF that I discovered the recommendation of adding a + before IP4. If that is the issue then unfortunately it has become the standard method and online tests confirm that is is correctly written; and we will face having to stop using the SPF record for SoftFail.

Any help on this would be greatly appreciated.

@Peter Karsai (ORF Team): Thank you for your reply. I'm glad to hear that the SPF record itself isn't the cause however rather concerned as to the potential cause. Your reply on quering the DNS servers used by us for the SPF record was a sensible one and one I should have thought of without thinking. That said I have checked the DNS servers and the response from all DNS servers listed by ORF were queried with the same response. I will continue to scratch my head on this one.

Just to confirm here is the message off ORF (with starred entries for privacy/security reasons.

Version: 4.4 REGISTERED
Log Mode: Verbose
Server: ****
Source: SMTPSVC-1
Time: 05/03/2012 14:47:23
Class: Blacklist
Severity: Information
Actions: Reject
Filtering Point: Before Arrival
HELO/EHLO Domain: (not available)
Related IP Address: 17.158.233.229
Message ID: (not available)
Email Subject: (not available)
Sender: ****@me.com
Recipient(s):
* *******
Message:
Recipient blacklisted by the SPF test (sender forged per policy of "me.com", SPF result: SoftFail).