SPF Checking

Question

Hi,    I activated sender-policy-framework some time ago on some fortimails!  After having a look through the logs I can see, that SPF checking is being performed, but actually mails are not getting blocked as they should!    Log messages say: SPF indicates that MTA (xxxxxx) is not permitted to send email for xxxx.xx ..... but email is still getting through if there is not any other spam-filter hitting it....    The Docs say " An unauthorized client IP address increases the  client sender reputation score. An authorized client  IP address decreases the client sender reputation  score."  .... But what if I want to block mails, whose SPF records doesn' t match the originating IP?!?!?!?      cheers.roman

npassion · Answer

Using SPF itself to make spam/ham decision would cause  many false positives.  SPF result coupled with deep header analysis (AntisSpam profile > Deep header analysis > Header analysis) would block some SPF violated emails.      ORIGINAL:  romanr    Hi,    I activated sender-policy-framework some time ago on some fortimails!  After having a look through the logs I can see, that SPF checking is being performed, but actually mails are not getting blocked as they should!    Log messages say: SPF indicates that MTA (xxxxxx) is not permitted to send email for xxxx.xx ..... but email is still getting through if there is not any other spam-filter hitting it....    The Docs say " An unauthorized client IP address increases the  client sender reputation score. An authorized client  IP address decreases the client sender reputation  score."  .... But what if I want to block mails, whose SPF records doesn' t match the originating IP?!?!?!?      cheers.roman

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded