Configure SPF settings

If a message fails SPFClosed Sender Policy Framework checks, you can select to hold it in a specified message area, or reject it. You can specify different actions, depending on whether a hard failure or soft failure occurs.

Enable or disable SPF Hard Fail checking

  1. Navigate to Policy > Manage Policy Definition > SpamLogic Settings. The SpamLogic Settings page is displayed.

  2. Select the Spam Policy tab.

  3. In the Spam Policy panel, click Click here to change these settings.

  4. From the drop-down menu of SPF Hard Fail, select:

    • Disabled

    • Hold in area

    • Reject

    • Add Info & Deliver

    • Hold, Add Info & Deliver

      If you select an option that contains Hold, a message will be held in a message area specified in the Hold Junk Email in Message Area panel on the SpamLogic Settings page.

  5. Click Save.

Enable or disable SPF Soft Fail checking

  1. Navigate to Policy > Manage Policy Definition > SpamLogic Settings. The SpamLogic Settings page is displayed.

  2. Select the Spam Policy tab.

  3. In the Spam Policy panel, click Click here to change these settings.

  4. From the drop-down menu of SPF Soft Fail, select:

    • Disabled

    • Hold in area

    • Add Info & Deliver

    • Hold, Add Info & Deliver

      If you select an option that contains Hold, a message will be held in a message area specified in the Hold Junk Email in Message Area panel on the SpamLogic Settings page.

  5. Click Save.

 

  • You can only use SPF validation if your Secure Email Gateway is connected directly to the Internet. An Internet connection enables the Gateway to determine whether SPF records exist in the DNS for the domain from which the message was received.

  • If you have enabled SPF validation, you might want to add servers to the allow list of known machines from which you will always allow messages. Using the allow list also prevents the overhead of performing SPF validation on trusted servers. The allow list can also provide an alternative solution if SPF mistakenly fails a trusted server. See Allow List for more information.

  • If you change any configuration or policy settings, you must Apply Configuration for the new settings to take effect. You can do this either from the Changes Made panel, or System > ConfigurationApply Configuration. See Apply new configuration for more information.

  • If you use Peer Gateways (i.e. when multiple Gateways are peered), any configuration changes from a local Gateway can then be applied to all the peers at the same time. See Configure Peer Gateways for more information.

See also...